Lucene search

Gentoo FoundationMGASA-2015-0174

HistoryMay 01, 2015 - 12:57 a.m.

Updated libreoffice packages fix CVE-2015-1774

2015-05-0100:57:25

Gentoo Foundation

advisories.mageia.org

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.017 Low

EPSS

Percentile

87.6%

JSON

Updated libreoffice packages fix security vulnerability: The HWP filter in LibreOffice before 4.3.7 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP document, which triggers an out-of-bounds write (CVE-2015-1774).

OSVersionArchitecturePackageVersionFilename
Mageia4noarchlibreoffice< 4.3.7.2-1libreoffice-4.3.7.2-1.mga4

OS	Version	Architecture	Package	Version	Filename
Mageia	4	noarch	libreoffice	< 4.3.7.2-1	libreoffice-4.3.7.2-1.mga4

References

www.libreoffice.org/about-us/security/advisories/cve-2015-1774

bugs.mageia.org/show_bug.cgi?id=15778

lists.fedoraproject.org/pipermail/package-announce/2015-April/156582.html

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.017 Low

EPSS

Percentile

87.6%

JSON

Related for MGASA-2015-0174