drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in LibreOffice
| Name: |
Ausführen beliebiger Kommandos in LibreOffice |
|
| ID: |
USN-2398-1 |
|
| Distribution: |
Ubuntu |
|
| Plattformen: |
Ubuntu 14.04 LTS, Ubuntu 14.10 |
|
| Datum: |
Mi, 5. November 2014, 21:48 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3693 |
|
| Applikationen: |
LibreOffice |
|
Originalnachricht |
This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--===============0246423281836945783==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="D5qQWDT0Xt2qNRHP9gjxkX8u6ASUG5NS4"
This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--D5qQWDT0Xt2qNRHP9gjxkX8u6ASUG5NS4
Content-Type: text/plain; charset=utf-
Content-Transfer-Encoding: quoted-printable
==========================================================================
Ubuntu Security Notice USN-2398-1
November 05, 2014
libreoffice vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 14.10
- Ubuntu 14.04 LTS
Summary:
LibreOffice could be made to crash or run programs if it received specially
crafted network traffic.
Software Description:
- libreoffice: Office productivity suite
Details:
It was discovered that LibreOffice incorrectly handled the Impress remote
control port. An attacker could possibly use this issue to cause Impress to
crash, resulting in a denial of service, or possibly execute arbitrary
code.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 14.10:
libreoffice-core 1:4.3.3-0ubuntu1
Ubuntu 14.04 LTS:
libreoffice-core 1:4.2.7-0ubuntu1
This update uses a new upstream release, which includes additional bug
fixes. After a standard system update you need to restart LibreOffice to
make all the necessary changes.
References:
http://www.ubuntu.com/usn/usn-2398-1
CVE-2014-3693
Package Information:
https://launchpad.net/ubuntu/+source/libreoffice/1:4.3.3-0ubuntu1
https://launchpad.net/ubuntu/+source/libreoffice/1:4.2.7-0ubuntu1
--D5qQWDT0Xt2qNRHP9gjxkX8u6ASUG5NS4
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=Thrq
-----END PGP SIGNATURE-----
--D5qQWDT0Xt2qNRHP9gjxkX8u6ASUG5NS4--
--===============0246423281836945783==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
--
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
--===============0246423281836945783==--
|
|
|
|
