Login
Newsletter
Werbung

Sicherheit: Preisgabe von Informationen in LibreOffice
Aktuelle Meldungen Distributionen
Name: Preisgabe von Informationen in LibreOffice
ID: USN-2400-1
Distribution: Ubuntu
Plattformen: Ubuntu 12.04 LTS
Datum: Di, 11. November 2014, 07:47
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3575
Applikationen: LibreOffice

Originalnachricht

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--===============4718948195034726150==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="WuVuUL4ex2VwL6O7pbsstFUbrNvb0d2mv"

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--WuVuUL4ex2VwL6O7pbsstFUbrNvb0d2mv
Content-Type: text/plain; charset=utf-
Content-Transfer-Encoding: quoted-printable

==========================================================================
Ubuntu Security Notice USN-2400-1
November 10, 2014

libreoffice vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 12.04 LTS

Summary:

LibreOffice could be made to embed sensitive information into documents.

Software Description:
- libreoffice: Office productivity suite

Details:

It was discovered that LibreOffice incorrectly handled OLE preview
generation. If a user were tricked into opening a crafted document, an
attacker could possibly exploit this to embed arbitrary data into
documents.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.04 LTS:
libreoffice-core 1:3.5.7-0ubuntu7

After a standard system update you need to restart LibreOffice to make all
the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2400-1
CVE-2014-3575

Package Information:
https://launchpad.net/ubuntu/+source/libreoffice/1:3.5.7-0ubuntu7



--WuVuUL4ex2VwL6O7pbsstFUbrNvb0d2mv
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQIcBAEBCgAGBQJUYOdOAAoJEGVp2FWnRL6TGngP/01QjMvoU8f8EgY/s2XPUcWw
B2gOdHpw0H11MkOGtxhh1TWpchEstkxpxWRb0mz4rzV0IINCoEtGYz6NyJ+BicX6
bSwbqMlhL9Go22aZRZtxgImdWKZkWQVuIp4MHwsqJtkrVZzHF7ejgfP56QDuNE4K
/0rbrkxRobWxnST+HkGzAWJy48D+egj1id2LMtpg05VXW+3eEoXW8vS+JiWJbUNR
S7Ew4ouzakbbR6pcmeC/sT51eBTG9RnukCD2bGbf8N+csNORsHz/qww0NLb3kpSU
SQq1v8W3RnYVbfFAq61Ze/iggjmyPVfpP2vrTrIZqOQxDJtvTglvIYm5X5u9hPY+
7tN1jkCCgZ2s9M8+arF5emz2ORLjOhFhMHAHnpz4M9fVgKWSy5I//svPYx3+tzVO
3m6Tel7VRBSYYFUyHvxuCO4Kfw9YV3IkiGHlAjLvpC/n0QqOnoEN7a2VLUSMAfxJ
ZMIaDf06vpUp5CeOP9qB0TxSvrOzVCL/IZ1nZDqNpX04XZ/xg22LGkgSRod1UUyH
OUb5+LOVsLvuSRRZvbawJBq4BT/1uMW0L52OSiAX4UYre+ZcmYtVCvVJ+/2ohHg8
E+Lzrp8mgDMjAHV2mKqsPqjoPeTqtRcd5fqH3zHupGd0luSQVoJPf+eFJPiRVe5q
q1j0tL3uDwYYW801lj6O
=s2Wq
-----END PGP SIGNATURE-----

--WuVuUL4ex2VwL6O7pbsstFUbrNvb0d2mv--


--===============4718948195034726150==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

--
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

--===============4718948195034726150==--
Pro-Linux
Gewinnspiel
Neue Nachrichten
Werbung