Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2016-2472-1.NASL
HistoryOct 07, 2016 - 12:00 a.m.

SUSE SLED12 Security Update : libreoffice (SUSE-SU-2016:2472-1)

2016-10-0700:00:00
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
JSON

LibreOffice was updated to version 5.1.5.2, bringing enhancements and bug fixes.

  • CVE-2016-4324: Parsing the Rich Text Format character style index was insufficiently checked for validity.
    Documents could be constructed which dereference an iterator to the first entry of an empty STL container.
    (bsc#987553)

  • Don’t use ‘nullable’ for introspection, as it isn’t available on SLE 12’s version of gobject-introspection.
    This prevents a segmentation fault in gnome-documents.
    (bsc#1000102)

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2016:2472-1.
# The text itself is copyright (C) SUSE.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(93910);
  script_version("2.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2016-4324");

  script_name(english:"SUSE SLED12 Security Update : libreoffice (SUSE-SU-2016:2472-1)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SUSE host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"LibreOffice was updated to version 5.1.5.2, bringing enhancements and
bug fixes.

  - CVE-2016-4324: Parsing the Rich Text Format character
    style index was insufficiently checked for validity.
    Documents could be constructed which dereference an
    iterator to the first entry of an empty STL container.
    (bsc#987553)

  - Don't use 'nullable' for introspection, as it isn't
    available on SLE 12's version of gobject-introspection.
    This prevents a segmentation fault in gnome-documents.
    (bsc#1000102)

Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.suse.com/show_bug.cgi?id=1000102"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.suse.com/show_bug.cgi?id=987553"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2016-4324/"
  );
  # https://www.suse.com/support/update/announcement/2016/suse-su-20162472-1/
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?e00db226"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product :

SUSE Linux Enterprise Workstation Extension 12-SP1:zypper in -t patch
SUSE-SLE-WE-12-SP1-2016-1442=1

SUSE Linux Enterprise Desktop 12-SP1:zypper in -t patch
SUSE-SLE-DESKTOP-12-SP1-2016-1442=1

To bring your system up-to-date, use 'zypper patch'."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base-drivers-mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base-drivers-mysql-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base-drivers-postgresql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base-drivers-postgresql-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-calc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-calc-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-calc-extensions");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-draw");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-draw-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-filters-optional");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-gnome");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-gnome-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-impress");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-impress-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-mailmerge");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-math");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-math-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-officebean");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-officebean-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-pyuno");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-pyuno-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-writer");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-writer-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-writer-extensions");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12");

  script_set_attribute(attribute:"vuln_publication_date", value:"2016/07/08");
  script_set_attribute(attribute:"patch_publication_date", value:"2016/10/06");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/10/07");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLED12)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLED12", "SUSE " + os_ver);

if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
if (cpu >!< "x86_64") audit(AUDIT_ARCH_NOT, "x86_64", cpu);


sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLED12" && (! preg(pattern:"^(1)$", string:sp))) audit(AUDIT_OS_NOT, "SLED12 SP1", os_ver + " SP" + sp);


flag = 0;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-base-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-base-debuginfo-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-base-drivers-mysql-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-base-drivers-mysql-debuginfo-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-base-drivers-postgresql-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-base-drivers-postgresql-debuginfo-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-calc-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-calc-debuginfo-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-calc-extensions-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-debuginfo-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-debugsource-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-draw-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-draw-debuginfo-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-filters-optional-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-gnome-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-gnome-debuginfo-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-impress-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-impress-debuginfo-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-mailmerge-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-math-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-math-debuginfo-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-officebean-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-officebean-debuginfo-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-pyuno-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-pyuno-debuginfo-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-writer-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-writer-debuginfo-5.1.5.2-29.4")) flag++;
if (rpm_check(release:"SLED12", sp:"1", cpu:"x86_64", reference:"libreoffice-writer-extensions-5.1.5.2-29.4")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libreoffice");
}
VendorProductVersionCPE
novellsuse_linuxlibreofficep-cpe:/a:novell:suse_linux:libreoffice
novellsuse_linuxlibreoffice-basep-cpe:/a:novell:suse_linux:libreoffice-base
novellsuse_linuxlibreoffice-base-debuginfop-cpe:/a:novell:suse_linux:libreoffice-base-debuginfo
novellsuse_linuxlibreoffice-base-drivers-mysqlp-cpe:/a:novell:suse_linux:libreoffice-base-drivers-mysql
novellsuse_linuxlibreoffice-base-drivers-mysql-debuginfop-cpe:/a:novell:suse_linux:libreoffice-base-drivers-mysql-debuginfo
novellsuse_linuxlibreoffice-base-drivers-postgresqlp-cpe:/a:novell:suse_linux:libreoffice-base-drivers-postgresql
novellsuse_linuxlibreoffice-base-drivers-postgresql-debuginfop-cpe:/a:novell:suse_linux:libreoffice-base-drivers-postgresql-debuginfo
novellsuse_linuxlibreoffice-calcp-cpe:/a:novell:suse_linux:libreoffice-calc
novellsuse_linuxlibreoffice-calc-debuginfop-cpe:/a:novell:suse_linux:libreoffice-calc-debuginfo
novellsuse_linuxlibreoffice-calc-extensionsp-cpe:/a:novell:suse_linux:libreoffice-calc-extensions
Rows per page:
1-10 of 301

Related

nessus 9
prion 1
mageia 1
talos 1
openvas 8
debian 2
osv 1
seebug 1
debiancve 1
checkpoint_advisories 1
archlinux 1
ubuntu 1
fedora 1
ubuntucve 1
cve 1
redhatcve 1
kaspersky 1
freebsd 1
oraclelinux 2
gentoo 1
nessus
nessus
openSUSE Security Update : libreoffice (openSUSE-2016-1192)
2016-10-17 00:00:00
Fedora 23 : 1:libreoffice (2016-f0552e1341)
2016-07-15 00:00:00
Debian DLA-581-1 : libreoffice security update
2016-08-04 00:00:00
prion
prion
Design/Logic Flaw
2016-07-08 19:59:00
mageia
mageia
Updated libreoffice packages fix security vulnerability
2016-07-08 22:50:51
talos
talos
The Document Foundation LibreOffice RTF Stylesheet Code Execution Vulnerability
2016-06-27 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-3608-1)
2016-06-28 00:00:00
LibreOffice Use-after-free Vulnerability (Jul 2016) - Windows
2016-07-12 00:00:00
Fedora Update for libreoffice FEDORA-2016-f0552e1341
2016-07-10 00:00:00
debian
debian
[SECURITY] [DSA 3608-1] libreoffice security update
2016-06-29 19:18:50
[SECURITY] [DLA 581-1] libreoffice security update
2016-08-03 07:45:35
osv
osv
libreoffice - security update
2016-08-03 00:00:00
seebug
seebug
The Document Foundation LibreOffice RTF Stylesheet Code Execution Vulnerability(CVE-2016-4324)
2017-10-19 00:00:00
debiancve
debiancve
CVE-2016-4324
2016-07-08 19:59:00
checkpoint_advisories
checkpoint_advisories
LibreOffice RTF parser Use After Free (CVE-2016-4324)
2016-07-06 00:00:00
archlinux
archlinux
libreoffice-fresh: arbitrary code execution
2016-07-05 00:00:00
ubuntu
ubuntu
LibreOffice vulnerability
2016-06-29 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: libreoffice-5.0.6.2-9.fc23
2016-07-05 08:26:54
ubuntucve
ubuntucve
CVE-2016-4324
2016-06-29 00:00:00
cve
cve
CVE-2016-4324
2016-07-08 19:59:00
redhatcve
redhatcve
CVE-2016-4324
2016-06-29 13:19:04
kaspersky
kaspersky
KLA10837 Code execution vulnerabilities in LibreOffice
2016-06-28 00:00:00
freebsd
freebsd
libreoffice -- use-after-free vulnerability
2016-06-27 00:00:00
oraclelinux
oraclelinux
libreoffice security and bug fix update
2017-04-12 00:00:00
libreoffice security, bug fix, and enhancement update
2016-11-09 00:00:00
gentoo
gentoo
LibreOffice, OpenOffice: Multiple vulnerabilities
2016-11-04 00:00:00
JSON
Related for SUSE_SU-2016-2472-1.NASL
nessus9prion1mageia1talos1openvas8debian2osv1seebug1debiancve1checkpoint_advisories1archlinux1ubuntu1fedora1ubuntucve1cve1redhatcve1kaspersky1freebsd1oraclelinux2gentoo1