drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in LibreOffice
Name: |
Ausführen beliebiger Kommandos in LibreOffice |
|
ID: |
USN-2398-1 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu 14.04 LTS, Ubuntu 14.10 |
|
Datum: |
Mi, 5. November 2014, 21:48 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3693 |
|
Applikationen: |
LibreOffice |
|
Originalnachricht |
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --===============0246423281836945783== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="D5qQWDT0Xt2qNRHP9gjxkX8u6ASUG5NS4"
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --D5qQWDT0Xt2qNRHP9gjxkX8u6ASUG5NS4 Content-Type: text/plain; charset=utf- Content-Transfer-Encoding: quoted-printable
========================================================================== Ubuntu Security Notice USN-2398-1 November 05, 2014
libreoffice vulnerability ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 14.10 - Ubuntu 14.04 LTS
Summary:
LibreOffice could be made to crash or run programs if it received specially crafted network traffic.
Software Description: - libreoffice: Office productivity suite
Details:
It was discovered that LibreOffice incorrectly handled the Impress remote control port. An attacker could possibly use this issue to cause Impress to crash, resulting in a denial of service, or possibly execute arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 14.10: libreoffice-core 1:4.3.3-0ubuntu1
Ubuntu 14.04 LTS: libreoffice-core 1:4.2.7-0ubuntu1
This update uses a new upstream release, which includes additional bug fixes. After a standard system update you need to restart LibreOffice to make all the necessary changes.
References: http://www.ubuntu.com/usn/usn-2398-1 CVE-2014-3693
Package Information: https://launchpad.net/ubuntu/+source/libreoffice/1:4.3.3-0ubuntu1 https://launchpad.net/ubuntu/+source/libreoffice/1:4.2.7-0ubuntu1
--D5qQWDT0Xt2qNRHP9gjxkX8u6ASUG5NS4 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1
iQIcBAEBCgAGBQJUWlWQAAoJEGVp2FWnRL6Th7oP/1+6SjU8VNNRe454RRopSo2s P1j7Lyt1rRY2POHKu544azxw952KGOEzzMaJnbkWXRskDcvgOZCgTdyhqvr/V3NP GRmoPC5edIunPCpa36dfZCv/OQ2ti1Am899O+2sTFhvZn7uOUOocvD67P91M9anT dpjCEzn3VZ0RPmEEF/mcspD7w03pOkggTO1bfxgBXYIVuahqR9xkND+bLksMvDjA f1I72cjqN0pVRnRmshj4TRY/R+PU24cKvOJ8qcQd6ayIDbXzkEeccJi6Yny+g8LH WuP6QCX0oPBB5SxliC3/6/wQqVjXbYcfrC3diQDPAZF3DgwugwHO5gfOoAH2soKb 66hhi78Bf7PBitryEj4fhD9IdpLc2rm7/HJmS/MiIYYOKDViKA5WziWsFOuv96Vj fhxIGuc/Shk/DaI4sSEk8IK1EaAuzNeuzQK9njMzv6ySM2y2ZHJMjX14Tosdk6AC F8vZG2vDhqZ0ssc6xYZe9Is4hMaZ0eAv/Hm6bslGFCg8x5PmrrrdvLsHnn3dlS5H D4jkCUrMopZ+ZgmYCF2inxXoVq/5TYkSib81PpO6XFfc1eG6Ujr8Y2V2B3ZV75BT MH6qHqAJzim024fM+ps1txmj2R357Pf6NJiHGIOREz/e8yD6VFB3Re4TKnPCcew8 JUuIFBCEAZ0r0hopL4kL =Thrq -----END PGP SIGNATURE-----
--D5qQWDT0Xt2qNRHP9gjxkX8u6ASUG5NS4--
--===============0246423281836945783== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline
-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
--===============0246423281836945783==--
|
|
|
|