6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.017 Low
EPSS
Percentile
87.6%
CentOS Errata and Security Advisory CESA-2015:1458
LibreOffice is an open source, community-developed office productivity
suite. It includes key desktop applications, such as a word processor, a
spreadsheet, a presentation manager, a formula editor, and a drawing
program. LibreOffice replaces OpenOffice and provides a similar but
enhanced and extended office suite.
A flaw was found in the way the LibreOffice HWP (Hangul Word Processor)
file filter processed certain HWP documents. An attacker able to trick a
user into opening a specially crafted HWP document could possibly use this
flaw to execute arbitrary code with the privileges of the user opening that
document. (CVE-2015-1774)
The libreoffice packages have been upgraded to upstream version 4.2.8.2,
which provides a number of bug fixes and enhancements over the previous
version, including:
OpenXML interoperability has been improved.
This update adds additional statistics functions to the Calc application,
thus improving interoperability with Microsoft Excel and its “Analysis
ToolPak” add-in.
Various performance improvements have been implemented in Calc.
This update adds new import filters for importing files from the Appple
Keynote and Abiword applications.
The export filter for the MathML markup language has been improved.
This update adds a new start screen that includes thumbnails of recently
opened documents.
A visual clue is now displayed in the Slide Sorter window for slides with
transitions or animations.
This update improves trend lines in charts.
LibreOffice now supports BCP 47 language tags.
For a complete list of bug fixes and enhancements provided by this rebase,
see the libreoffice change log linked from the References section.
(BZ#1150048)
Users of libreoffice are advised to upgrade to these updated packages,
which correct these issues and add these enhancements.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-cr-announce/2015-July/028364.html
Affected packages:
autocorr-af
autocorr-bg
autocorr-ca
autocorr-cs
autocorr-da
autocorr-de
autocorr-en
autocorr-es
autocorr-fa
autocorr-fi
autocorr-fr
autocorr-ga
autocorr-hr
autocorr-hu
autocorr-is
autocorr-it
autocorr-ja
autocorr-ko
autocorr-lb
autocorr-lt
autocorr-mn
autocorr-nl
autocorr-pl
autocorr-pt
autocorr-ro
autocorr-ru
autocorr-sk
autocorr-sl
autocorr-sr
autocorr-sv
autocorr-tr
autocorr-vi
autocorr-zh
libreoffice
libreoffice-base
libreoffice-bsh
libreoffice-calc
libreoffice-core
libreoffice-draw
libreoffice-emailmerge
libreoffice-filters
libreoffice-gdb-debug-support
libreoffice-glade
libreoffice-graphicfilter
libreoffice-headless
libreoffice-impress
libreoffice-langpack-af
libreoffice-langpack-ar
libreoffice-langpack-as
libreoffice-langpack-bg
libreoffice-langpack-bn
libreoffice-langpack-ca
libreoffice-langpack-cs
libreoffice-langpack-cy
libreoffice-langpack-da
libreoffice-langpack-de
libreoffice-langpack-dz
libreoffice-langpack-el
libreoffice-langpack-en
libreoffice-langpack-es
libreoffice-langpack-et
libreoffice-langpack-eu
libreoffice-langpack-fi
libreoffice-langpack-fr
libreoffice-langpack-ga
libreoffice-langpack-gl
libreoffice-langpack-gu
libreoffice-langpack-he
libreoffice-langpack-hi
libreoffice-langpack-hr
libreoffice-langpack-hu
libreoffice-langpack-it
libreoffice-langpack-ja
libreoffice-langpack-kn
libreoffice-langpack-ko
libreoffice-langpack-lt
libreoffice-langpack-mai
libreoffice-langpack-ml
libreoffice-langpack-mr
libreoffice-langpack-ms
libreoffice-langpack-nb
libreoffice-langpack-nl
libreoffice-langpack-nn
libreoffice-langpack-nr
libreoffice-langpack-nso
libreoffice-langpack-or
libreoffice-langpack-pa
libreoffice-langpack-pl
libreoffice-langpack-pt-BR
libreoffice-langpack-pt-PT
libreoffice-langpack-ro
libreoffice-langpack-ru
libreoffice-langpack-sk
libreoffice-langpack-sl
libreoffice-langpack-sr
libreoffice-langpack-ss
libreoffice-langpack-st
libreoffice-langpack-sv
libreoffice-langpack-ta
libreoffice-langpack-te
libreoffice-langpack-th
libreoffice-langpack-tn
libreoffice-langpack-tr
libreoffice-langpack-ts
libreoffice-langpack-uk
libreoffice-langpack-ur
libreoffice-langpack-ve
libreoffice-langpack-xh
libreoffice-langpack-zh-Hans
libreoffice-langpack-zh-Hant
libreoffice-langpack-zu
libreoffice-librelogo
libreoffice-math
libreoffice-nlpsolver
libreoffice-ogltrans
libreoffice-opensymbol-fonts
libreoffice-pdfimport
libreoffice-pyuno
libreoffice-rhino
libreoffice-sdk
libreoffice-sdk-doc
libreoffice-ure
libreoffice-wiki-publisher
libreoffice-writer
libreoffice-xsltfilter
Upstream details at:
https://access.redhat.com/errata/RHSA-2015:1458
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 6 | noarch | autocorr-af | < 4.2.8.2-11.el6 | autocorr-af-4.2.8.2-11.el6.noarch.rpm |
CentOS | 6 | noarch | autocorr-bg | < 4.2.8.2-11.el6 | autocorr-bg-4.2.8.2-11.el6.noarch.rpm |
CentOS | 6 | noarch | autocorr-ca | < 4.2.8.2-11.el6 | autocorr-ca-4.2.8.2-11.el6.noarch.rpm |
CentOS | 6 | noarch | autocorr-cs | < 4.2.8.2-11.el6 | autocorr-cs-4.2.8.2-11.el6.noarch.rpm |
CentOS | 6 | noarch | autocorr-da | < 4.2.8.2-11.el6 | autocorr-da-4.2.8.2-11.el6.noarch.rpm |
CentOS | 6 | noarch | autocorr-de | < 4.2.8.2-11.el6 | autocorr-de-4.2.8.2-11.el6.noarch.rpm |
CentOS | 6 | noarch | autocorr-en | < 4.2.8.2-11.el6 | autocorr-en-4.2.8.2-11.el6.noarch.rpm |
CentOS | 6 | noarch | autocorr-es | < 4.2.8.2-11.el6 | autocorr-es-4.2.8.2-11.el6.noarch.rpm |
CentOS | 6 | noarch | autocorr-fa | < 4.2.8.2-11.el6 | autocorr-fa-4.2.8.2-11.el6.noarch.rpm |
CentOS | 6 | noarch | autocorr-fi | < 4.2.8.2-11.el6 | autocorr-fi-4.2.8.2-11.el6.noarch.rpm |