ID OPENVAS:1361412562310841049 Type openvas Reporter Copyright (c) 2012 Greenbone Networks GmbH Modified 2018-08-17T00:00:00
Description
Ubuntu Update for Linux kernel vulnerabilities USN-1480-1
###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_ubuntu_USN_1480_1.nasl 11037 2018-08-17 11:51:16Z cfischer $
#
# Ubuntu Update for raptor USN-1480-1
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################
include("revisions-lib.inc");
if(description)
{
script_xref(name:"URL", value:"http://www.ubuntu.com/usn/usn-1480-1/");
script_oid("1.3.6.1.4.1.25623.1.0.841049");
script_version("$Revision: 11037 $");
script_tag(name:"last_modification", value:"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $");
script_tag(name:"creation_date", value:"2012-06-19 09:42:22 +0530 (Tue, 19 Jun 2012)");
script_cve_id("CVE-2012-0037");
script_tag(name:"cvss_base", value:"4.3");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:N/A:N");
script_xref(name:"USN", value:"1480-1");
script_name("Ubuntu Update for raptor USN-1480-1");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (c) 2012 Greenbone Networks GmbH");
script_family("Ubuntu Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages", re:"ssh/login/release=UBUNTU(10\.04 LTS|12\.04 LTS|11\.10|11\.04)");
script_tag(name:"summary", value:"Ubuntu Update for Linux kernel vulnerabilities USN-1480-1");
script_tag(name:"affected", value:"raptor on Ubuntu 12.04 LTS,
Ubuntu 11.10,
Ubuntu 11.04,
Ubuntu 10.04 LTS");
script_tag(name:"solution", value:"Please Install the Updated Packages.");
script_tag(name:"insight", value:"Timothy D. Morgan discovered that Raptor would unconditionally load XML
external entities. If a user were tricked into opening a specially crafted
document in an application linked against Raptor, an attacker could
possibly obtain access to arbitrary files on the user's system or
potentially execute arbitrary code with the privileges of the user invoking
the program.");
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("pkg-lib-deb.inc");
release = dpkg_get_ssh_release();
res = "";
if(release == NULL){
exit(0);
}
if(release == "UBUNTU10.04 LTS")
{
if ((res = isdpkgvuln(pkg:"libraptor1", ver:"1.4.21-1ubuntu1.1", rls:"UBUNTU10.04 LTS")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99);
exit(0);
}
if(release == "UBUNTU12.04 LTS")
{
if ((res = isdpkgvuln(pkg:"libraptor1", ver:"1.4.21-7ubuntu0.1", rls:"UBUNTU12.04 LTS")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99);
exit(0);
}
if(release == "UBUNTU11.10")
{
if ((res = isdpkgvuln(pkg:"libraptor1", ver:"1.4.21-5ubuntu0.1", rls:"UBUNTU11.10")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99);
exit(0);
}
if(release == "UBUNTU11.04")
{
if ((res = isdpkgvuln(pkg:"libraptor1", ver:"1.4.21-2ubuntu0.1", rls:"UBUNTU11.04")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99);
exit(0);
}
{"id": "OPENVAS:1361412562310841049", "bulletinFamily": "scanner", "title": "Ubuntu Update for raptor USN-1480-1", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1480-1", "published": "2012-06-19T00:00:00", "modified": "2018-08-17T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841049", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["1480-1", "http://www.ubuntu.com/usn/usn-1480-1/"], "cvelist": ["CVE-2012-0037"], "type": "openvas", "lastseen": "2018-09-01T23:58:08", "history": [{"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1480-1", "edition": 1, "enchantments": {"score": {"value": 9.3, "vector": "NONE"}}, "hash": "3dcc520dec4707848f86fa3fec32cb71ca4363579c96d3e256977e2c9292bd8b", "hashmap": [{"hash": "43baddaa70add1107086453517de711c", "key": "href"}, {"hash": "17b15e8e016d9e5c8b6607c02bfd9924", "key": "description"}, {"hash": "3c236091754d2db00c1c42f811b3ada4", "key": "cvss"}, {"hash": "4fb7fd6149697e74d091717ea3f1ca84", "key": "modified"}, {"hash": "d227a126608b1475a16d4aaf0f8d0806", "key": "pluginID"}, {"hash": "11444654809843c67bb25c23b14b8e8e", "key": "title"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "a282f166ddc6c378940071a6b738e1a3", "key": "reporter"}, {"hash": "3c110792002b1cfad01d834c9b577a22", "key": "references"}, {"hash": "82a2a9fb29a536d769d3402e9a58e1e1", "key": "published"}, {"hash": "c9b7d00377a789a14c9bb9dab6c7168c", "key": "naslFamily"}, {"hash": "5c5e12699a7be6122ce491e38636d69a", "key": "sourceData"}, {"hash": "2ab1fb8906f2e00c8bfb5b4349dcf9cd", "key": "cvelist"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841049", "id": "OPENVAS:1361412562310841049", "lastseen": "2018-04-06T11:18:49", "modified": "2018-04-06T00:00:00", "naslFamily": "Ubuntu Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310841049", "published": "2012-06-19T00:00:00", "references": ["1480-1", "http://www.ubuntu.com/usn/usn-1480-1/"], "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1480_1.nasl 9352 2018-04-06 07:13:02Z cfischer $\n#\n# Ubuntu Update for raptor USN-1480-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Timothy D. Morgan discovered that Raptor would unconditionally load XML\n external entities. If a user were tricked into opening a specially crafted\n document in an application linked against Raptor, an attacker could\n possibly obtain access to arbitrary files on the user's system or\n potentially execute arbitrary code with the privileges of the user invoking\n the program.\";\n\ntag_summary = \"Ubuntu Update for Linux kernel vulnerabilities USN-1480-1\";\ntag_affected = \"raptor on Ubuntu 12.04 LTS ,\n Ubuntu 11.10 ,\n Ubuntu 11.04 ,\n Ubuntu 10.04 LTS\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1480-1/\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.841049\");\n script_version(\"$Revision: 9352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-06-19 09:42:22 +0530 (Tue, 19 Jun 2012)\");\n script_cve_id(\"CVE-2012-0037\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_xref(name: \"USN\", value: \"1480-1\");\n script_name(\"Ubuntu Update for raptor USN-1480-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-1ubuntu1.1\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-7ubuntu0.1\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU11.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-5ubuntu0.1\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU11.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-2ubuntu0.1\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "title": "Ubuntu Update for raptor USN-1480-1", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2018-04-06T11:18:49"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1480-1", "edition": 2, "enchantments": {"score": {"value": 9.3, "vector": "NONE"}}, "hash": "39171d7cfb283f945d585397d4450392efd5931f8f5ab2757a96848824a916f8", "hashmap": [{"hash": "43baddaa70add1107086453517de711c", "key": "href"}, {"hash": "d474137195f7479873e0759711304521", "key": "modified"}, {"hash": "17b15e8e016d9e5c8b6607c02bfd9924", "key": "description"}, {"hash": "3c236091754d2db00c1c42f811b3ada4", "key": "cvss"}, {"hash": "d227a126608b1475a16d4aaf0f8d0806", "key": "pluginID"}, {"hash": "11444654809843c67bb25c23b14b8e8e", "key": "title"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "a282f166ddc6c378940071a6b738e1a3", "key": "reporter"}, {"hash": "b99ed15ad114121fc00630a5efc2b31b", "key": "sourceData"}, {"hash": "3c110792002b1cfad01d834c9b577a22", "key": "references"}, {"hash": "82a2a9fb29a536d769d3402e9a58e1e1", "key": "published"}, {"hash": "c9b7d00377a789a14c9bb9dab6c7168c", "key": "naslFamily"}, {"hash": "2ab1fb8906f2e00c8bfb5b4349dcf9cd", "key": "cvelist"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841049", "id": "OPENVAS:1361412562310841049", "lastseen": "2018-04-30T13:55:19", "modified": "2018-04-27T00:00:00", "naslFamily": "Ubuntu Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310841049", "published": "2012-06-19T00:00:00", "references": ["1480-1", "http://www.ubuntu.com/usn/usn-1480-1/"], "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1480_1.nasl 9649 2018-04-27 08:45:50Z cfischer $\n#\n# Ubuntu Update for raptor USN-1480-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1480-1/\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.841049\");\n script_version(\"$Revision: 9649 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-27 10:45:50 +0200 (Fri, 27 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-06-19 09:42:22 +0530 (Tue, 19 Jun 2012)\");\n script_cve_id(\"CVE-2012-0037\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_xref(name: \"USN\", value: \"1480-1\");\n script_name(\"Ubuntu Update for raptor USN-1480-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU(10\\.04 LTS|12\\.04 LTS|11\\.10|11\\.04)\");\n script_tag(name : \"summary\" , value : \"Ubuntu Update for Linux kernel vulnerabilities USN-1480-1\");\n script_tag(name : \"affected\" , value : \"raptor on Ubuntu 12.04 LTS ,\n Ubuntu 11.10 ,\n Ubuntu 11.04 ,\n Ubuntu 10.04 LTS\");\n script_tag(name : \"solution\" , value : \"Please Install the Updated Packages.\");\n script_tag(name : \"insight\" , value : \"Timothy D. Morgan discovered that Raptor would unconditionally load XML\n external entities. If a user were tricked into opening a specially crafted\n document in an application linked against Raptor, an attacker could\n possibly obtain access to arbitrary files on the user's system or\n potentially execute arbitrary code with the privileges of the user invoking\n the program.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-1ubuntu1.1\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-7ubuntu0.1\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU11.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-5ubuntu0.1\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU11.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-2ubuntu0.1\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "title": "Ubuntu Update for raptor USN-1480-1", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2018-04-30T13:55:19"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1480-1", "edition": 3, "enchantments": {"score": {"value": 9.3, "vector": "NONE"}}, "hash": "e756f5b0b10c2f50835e91e2d7e550a58d99877cdbc7dd4d5a48f971907df031", "hashmap": [{"hash": "43baddaa70add1107086453517de711c", "key": "href"}, {"hash": "f1188d8ebe5727620b8baa9076b527e2", "key": "sourceData"}, {"hash": "17b15e8e016d9e5c8b6607c02bfd9924", "key": "description"}, {"hash": "3c236091754d2db00c1c42f811b3ada4", "key": "cvss"}, {"hash": "d227a126608b1475a16d4aaf0f8d0806", "key": "pluginID"}, {"hash": "11444654809843c67bb25c23b14b8e8e", "key": "title"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "a282f166ddc6c378940071a6b738e1a3", "key": "reporter"}, {"hash": "3c110792002b1cfad01d834c9b577a22", "key": "references"}, {"hash": "82a2a9fb29a536d769d3402e9a58e1e1", "key": "published"}, {"hash": "c9b7d00377a789a14c9bb9dab6c7168c", "key": "naslFamily"}, {"hash": "2ab1fb8906f2e00c8bfb5b4349dcf9cd", "key": "cvelist"}, {"hash": "464857d7b87b7b905e79b99c78b7d97a", "key": "modified"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841049", "id": "OPENVAS:1361412562310841049", "lastseen": "2018-08-24T21:36:12", "modified": "2018-08-17T00:00:00", "naslFamily": "Ubuntu Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310841049", "published": "2012-06-19T00:00:00", "references": ["1480-1", "http://www.ubuntu.com/usn/usn-1480-1/"], "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1480_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for raptor USN-1480-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\n\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-1480-1/\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.841049\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-06-19 09:42:22 +0530 (Tue, 19 Jun 2012)\");\n script_cve_id(\"CVE-2012-0037\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_xref(name:\"USN\", value:\"1480-1\");\n script_name(\"Ubuntu Update for raptor USN-1480-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU(10\\.04 LTS|12\\.04 LTS|11\\.10|11\\.04)\");\n script_tag(name:\"summary\", value:\"Ubuntu Update for Linux kernel vulnerabilities USN-1480-1\");\n script_tag(name:\"affected\", value:\"raptor on Ubuntu 12.04 LTS,\n Ubuntu 11.10,\n Ubuntu 11.04,\n Ubuntu 10.04 LTS\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Timothy D. Morgan discovered that Raptor would unconditionally load XML\n external entities. If a user were tricked into opening a specially crafted\n document in an application linked against Raptor, an attacker could\n possibly obtain access to arbitrary files on the user's system or\n potentially execute arbitrary code with the privileges of the user invoking\n the program.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-1ubuntu1.1\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-7ubuntu0.1\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU11.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-5ubuntu0.1\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU11.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-2ubuntu0.1\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "title": "Ubuntu Update for raptor USN-1480-1", "type": "openvas", "viewCount": 0}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-08-24T21:36:12"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1480-1", "edition": 4, "enchantments": {"score": {"value": 9.3, "vector": "NONE"}}, "hash": "1fdbb98e7f19b99b07b23b340f69934af01cce875afcb9c80cefd1c3711d3ef3", "hashmap": [{"hash": "43baddaa70add1107086453517de711c", "key": "href"}, {"hash": "f1188d8ebe5727620b8baa9076b527e2", "key": "sourceData"}, {"hash": "17b15e8e016d9e5c8b6607c02bfd9924", "key": "description"}, {"hash": "d227a126608b1475a16d4aaf0f8d0806", "key": "pluginID"}, {"hash": "11444654809843c67bb25c23b14b8e8e", "key": "title"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "a282f166ddc6c378940071a6b738e1a3", "key": "reporter"}, {"hash": "3c110792002b1cfad01d834c9b577a22", "key": "references"}, {"hash": "82a2a9fb29a536d769d3402e9a58e1e1", "key": "published"}, {"hash": "c9b7d00377a789a14c9bb9dab6c7168c", "key": "naslFamily"}, {"hash": "2ab1fb8906f2e00c8bfb5b4349dcf9cd", "key": "cvelist"}, {"hash": "464857d7b87b7b905e79b99c78b7d97a", "key": "modified"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841049", "id": "OPENVAS:1361412562310841049", "lastseen": "2018-08-30T19:25:20", "modified": "2018-08-17T00:00:00", "naslFamily": "Ubuntu Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310841049", "published": "2012-06-19T00:00:00", "references": ["1480-1", "http://www.ubuntu.com/usn/usn-1480-1/"], "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1480_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for raptor USN-1480-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\n\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-1480-1/\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.841049\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-06-19 09:42:22 +0530 (Tue, 19 Jun 2012)\");\n script_cve_id(\"CVE-2012-0037\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_xref(name:\"USN\", value:\"1480-1\");\n script_name(\"Ubuntu Update for raptor USN-1480-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU(10\\.04 LTS|12\\.04 LTS|11\\.10|11\\.04)\");\n script_tag(name:\"summary\", value:\"Ubuntu Update for Linux kernel vulnerabilities USN-1480-1\");\n script_tag(name:\"affected\", value:\"raptor on Ubuntu 12.04 LTS,\n Ubuntu 11.10,\n Ubuntu 11.04,\n Ubuntu 10.04 LTS\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Timothy D. Morgan discovered that Raptor would unconditionally load XML\n external entities. If a user were tricked into opening a specially crafted\n document in an application linked against Raptor, an attacker could\n possibly obtain access to arbitrary files on the user's system or\n potentially execute arbitrary code with the privileges of the user invoking\n the program.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-1ubuntu1.1\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-7ubuntu0.1\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU11.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-5ubuntu0.1\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU11.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-2ubuntu0.1\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "title": "Ubuntu Update for raptor USN-1480-1", "type": "openvas", "viewCount": 0}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-30T19:25:20"}], "edition": 5, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cvelist", "hash": "2ab1fb8906f2e00c8bfb5b4349dcf9cd"}, {"key": "cvss", "hash": "3c236091754d2db00c1c42f811b3ada4"}, {"key": "description", "hash": "17b15e8e016d9e5c8b6607c02bfd9924"}, {"key": "href", "hash": "43baddaa70add1107086453517de711c"}, {"key": "modified", "hash": "464857d7b87b7b905e79b99c78b7d97a"}, {"key": "naslFamily", "hash": "c9b7d00377a789a14c9bb9dab6c7168c"}, {"key": "pluginID", "hash": "d227a126608b1475a16d4aaf0f8d0806"}, {"key": "published", "hash": "82a2a9fb29a536d769d3402e9a58e1e1"}, {"key": "references", "hash": "3c110792002b1cfad01d834c9b577a22"}, {"key": "reporter", "hash": "a282f166ddc6c378940071a6b738e1a3"}, {"key": "sourceData", "hash": "f1188d8ebe5727620b8baa9076b527e2"}, {"key": "title", "hash": "11444654809843c67bb25c23b14b8e8e"}, {"key": "type", "hash": "47c1f692ea47a21f716dad07043ade01"}], "hash": "e756f5b0b10c2f50835e91e2d7e550a58d99877cdbc7dd4d5a48f971907df031", "viewCount": 0, "enchantments": {"score": {"value": 9.3, "vector": "NONE"}, "vulnersScore": 9.3}, "objectVersion": "1.3", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1480_1.nasl 11037 2018-08-17 11:51:16Z cfischer $\n#\n# Ubuntu Update for raptor USN-1480-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\n\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-1480-1/\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.841049\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-06-19 09:42:22 +0530 (Tue, 19 Jun 2012)\");\n script_cve_id(\"CVE-2012-0037\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_xref(name:\"USN\", value:\"1480-1\");\n script_name(\"Ubuntu Update for raptor USN-1480-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU(10\\.04 LTS|12\\.04 LTS|11\\.10|11\\.04)\");\n script_tag(name:\"summary\", value:\"Ubuntu Update for Linux kernel vulnerabilities USN-1480-1\");\n script_tag(name:\"affected\", value:\"raptor on Ubuntu 12.04 LTS,\n Ubuntu 11.10,\n Ubuntu 11.04,\n Ubuntu 10.04 LTS\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Timothy D. Morgan discovered that Raptor would unconditionally load XML\n external entities. If a user were tricked into opening a specially crafted\n document in an application linked against Raptor, an attacker could\n possibly obtain access to arbitrary files on the user's system or\n potentially execute arbitrary code with the privileges of the user invoking\n the program.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-1ubuntu1.1\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-7ubuntu0.1\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU11.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-5ubuntu0.1\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU11.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-2ubuntu0.1\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Ubuntu Local Security Checks", "pluginID": "1361412562310841049"}
{"cve": [{"lastseen": "2017-08-29T12:17:28", "references": ["http://rhn.redhat.com/errata/RHSA-2012-0410.html", "http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078242.html", "http://www.mandriva.com/security/advisories?name=MDVSA-2012:061", "http://www.mandriva.com/security/advisories?name=MDVSA-2012:063", "http://librdf.org/raptor/RELEASE.html#rel2_0_7", "https://github.com/dajobe/raptor/commit/a676f235309a59d4aa78eeffd2574ae5d341fcb0", "http://www.mandriva.com/security/advisories?name=MDVSA-2012:062", "http://blog.documentfoundation.org/2012/03/22/tdf-announces-libreoffice-3-4-6/", "http://www.securitytracker.com/id?1026837", "http://www.openoffice.org/security/cves/CVE-2012-0037.html", "http://www.libreoffice.org/advisories/CVE-2012-0037/", "http://www.openwall.com/lists/oss-security/2012/03/27/4", "http://vsecurity.com/resources/advisory/20120324-1/", "http://security.gentoo.org/glsa/glsa-201209-05.xml", "http://www.gentoo.org/security/en/glsa/glsa-201408-19.xml", "http://rhn.redhat.com/errata/RHSA-2012-0411.html", "https://exchange.xforce.ibmcloud.com/vulnerabilities/74235", "http://lists.fedoraproject.org/pipermail/package-announce/2012-April/077708.html", "http://www.securityfocus.com/bid/52681", "http://www.debian.org/security/2012/dsa-2438"], "description": "Redland Raptor (aka libraptor) before 2.0.7, as used by OpenOffice 3.3 and 3.4 Beta, LibreOffice before 3.4.6 and 3.5.x before 3.5.1, and other products, allows user-assisted remote attackers to read arbitrary files via a crafted XML external entity (XXE) declaration and reference in an RDF document.", "edition": 2, "reporter": "NVD", "published": "2012-06-16T23:41:40", "title": "CVE-2012-0037", "type": "cve", "enchantments": {"score": {"modified": "2017-08-29T12:17:28", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2012-0037"], "scanner": [], "modified": "2017-08-28T21:30:47", "cpe": ["cpe:/a:libreoffice:libreoffice:3.4.0", "cpe:/a:libreoffice:libreoffice:3.3.4", "cpe:/a:libreoffice:libreoffice:3.3.3", "cpe:/a:libreoffice:libreoffice:3.3.1", "cpe:/a:apache:openoffice.org:3.4:beta", "cpe:/a:libreoffice:libreoffice:3.5", "cpe:/a:libreoffice:libreoffice:3.3.2", "cpe:/a:apache:openoffice.org:3.3", "cpe:/a:libreoffice:libreoffice:3.4.2", "cpe:/a:libreoffice:libreoffice:3.3.0", "cpe:/a:redland:libraptor:2.0.6", "cpe:/a:libreoffice:libreoffice:3.4.1", "cpe:/a:libreoffice:libreoffice:3.4.5"], "id": "CVE-2012-0037", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0037", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:44", "references": [], "description": "-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n\r\n VSR Security Advisory\r\n http://www.vsecurity.com/\r\n\r\n=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=\r\n\r\nAdvisory Name: libraptor - XXE in RDF/XML File Interpretation\r\n Release Date: 2012-03-24\r\n Applications: libraptor / librdf (versions 1.x and 2.x)\r\nAlso Affected: OpenOffice 3.x, LibreOffice 3.x, AbiWord, KOffice\r\n Author: tmorgan {a} vsecurity * com\r\nVendor Status: Patches available; major downstream vendors\r\n and operating system distributions notified\r\nCVE Candidate: CVE-2012-0037\r\n Reference: http://www.vsecurity.com/resources/advisory/20120324-1/\r\n\r\n=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=\r\n\r\n\r\nProduct Description\r\n~-----------------~\r\n"Raptor is a free software / Open Source C library that provides a set of\r\n parsers and serializers that generate Resource Description Framework (RDF)\r\n triples by parsing syntaxes or serialize the triples into a syntax. The\r\n supported parsing syntaxes are RDF/XML, N-Quads, N-Triples, TRiG, Turtle, RSS\r\n tag soup including all versions of RSS, Atom 1.0 and 0.3, GRDDL and\r\n microformats for HTML, XHTML and XML and RDFa. The serializing syntaxes are\r\n RDF/XML (regular, and abbreviated), Atom 1.0, GraphViz, JSON, N-Quads,\r\n N-Triples, RSS 1.0 and XMP." -- libraptor web site [1]\r\n\r\nlibraptor is a component of librdf[2] which is used by a variety of open source\r\nsoftware to interpret Resource Description Framework (RDF) [3] formats.\r\n\r\n\r\nVulnerability Overview\r\n~--------------------~\r\nIn December 2011, VSR identified a vulnerability in multiple open source office\r\nproducts (including OpenOffice, LibreOffice, KOffice, and AbiWord) due to unsafe\r\ninterpretation of XML files with custom entity declarations. Deeper analysis\r\nrevealed that the vulnerability was caused by acceptance of external entities by\r\nthe libraptor library, which is used by librdf and is in turn used by these\r\noffice products.\r\n\r\nIn the context of office applications, these vulnerabilities could allow for XML\r\nExternal Entity (XXE) attacks resulting in file theft and a loss of user privacy\r\nwhen opening potentially malicious ODF documents. For other applications which\r\ndepend on librdf or libraptor, potentially serious consequences could result\r\nfrom accepting RDF/XML content from untrusted sources, though the impact may\r\nvary widely depending on the context.\r\n\r\n\r\nVulnerability Details\r\n~-------------------~\r\nOpen Document Format (ODF) files consist of a collection of several different\r\nfiles stored in a ZIP archive. Included in this set is a "manifest.rdf" file\r\nwhich is formatted according to the RDF/XML representation. The RDF format is\r\nintended to be used for storing metadata associated with specific document\r\nelements. The manifest.rdf file can reference secondary RDF files within the\r\nODF file as well as external document schemas.\r\n\r\nThe RDF file parser (librdf) used by the affected office products allows DTD\r\nspecifications within the RDF files themselves. In addition, the parser\r\ninterprets external entities which may reference arbitrary external files, HTTP\r\nand FTP resources.\r\n\r\nFor instance, the following "evil.rdf" file was created within a valid ODF text\r\narchive (.odt file) which was referenced by the internal manifest.rdf file:\r\n\r\n\r\n<?xml version="1.0" encoding="utf-8"?>\r\n<!DOCTYPE rdf [\r\n <!ENTITY file SYSTEM "file:///c:/windows/win.ini">\r\n]>\r\n<rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#">\r\n <rdf:Description rdf:about="content.xml#id1265690860">\r\n <ns0:comment\r\nxmlns:ns0="http://www.w3.org/2000/01/rdf-schema#">&file;</ns0:comment>\r\n </rdf:Description>\r\n</rdf:RDF>\r\n\r\n\r\n\r\nUpon opening the malicious .odt file in OpenOffice for Windows, the\r\nc:\windows\win.ini file was read and included in the document metadata. Upon\r\nsaving the document, this metadata was included literally in the resulting\r\nevil.rdf file (within the .odt):\r\n\r\n<?xml version="1.0" encoding="utf-8"?>\r\n<rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#">\r\n <rdf:Description rdf:about="content.xml#id1265690860">\r\n <ns1:comment xmlns:ns1="http://www.w3.org/2000/01/rdf-schema#">; for\r\n16-bit app support\r\n[fonts]\r\n[extensions]\r\n[mci extensions]\r\n[files]\r\n[Mail]\r\nMAPI=1\r\nCMCDLLNAME32=mapi32.dll\r\nCMC=1\r\nMAPIX=1\r\nMAPIXVER=1.0.0.1\r\nOLEMessaging=1\r\n</ns1:comment>\r\n </rdf:Description>\r\n</rdf:RDF>\r\n\r\n\r\nThe malicious XML entities could also include URLs to attacker-controlled\r\nHTTP or FTP resources. This would allow an attacker to determine when a\r\ndocument was opened, potentially resulting in reduced privacy. However, based\r\non current analysis of the affected office applications, the most serious attack\r\nscenario is likely to be:\r\n\r\n1. Attacker posts a malicious file on a web site or sends file to victim. The\r\nfile contains a form for the victim to fill out and return to the attacker.\r\n\r\n2. Victim fills out the form, saves it, sends it back to the attacker.\r\n\r\n3. Attacker is able to read the contents of any stolen files as embedded\r\nmetadata, simply by unzipping the returned file and reading the malicious RDF\r\ncomponent.\r\n\r\n\r\nThis attack clearly requires some significant user interaction. However, other\r\napplications which rely on librdf/libraptor have not been analyzed. It is\r\nplausible that the context of the external entity interpretation in other\r\nsoftware could allow for more serious automated file retrieval attacks.\r\n\r\n\r\nVersions Affected\r\n~---------------~\r\nThe 1.x and 2.x major versions of librdf are affected.\r\n\r\nThus far, all recent versions of open source office products appear to be\r\naffected, since these products rely on librdf/raptor for the interpretation of\r\nRDF files. This, in turn relies on libxml2 which supports external entity\r\ninterpretation by default. OpenOffice and LibreOffice include a modified copy of\r\nlibrdf 1.x which was vulnerable at the time of testing. It is likely that all\r\npreviously release 3.x versions of OpenOffice and LibreOffice are vulnerable.\r\nAbiWord and KOffice rely on a copy of librdf which is installed by the\r\nunderlying operating system.\r\n\r\nNumerous other open source software packages depend on librdf or libraptor\r\n(including ardour, libslv2, lv2file, morla, soprano, and numerous\r\nlanguage-specific wrappers), but it is not known if these are exploitable in any\r\nrealistic scenario.\r\n\r\n\r\nVendor Response\r\n~-------------~\r\nThe following timeline provides an overview of communication with the primary\r\naffected vendors:\r\n\r\n2012-01-09 OpenOffice, LibreOffice, AbiWord, KOffice, and libraptor\r\n maintainers were provided a draft advisory and test sample.\r\n The OpenWall "distros" mailing list was also notified.\r\n Apache OpenOffice Security team acknowledged notification.\r\n libraptor developer confirmed flaw.\r\n\r\n2012-01-10 CVE-2012-0037 assigned by Apache.\r\n\r\n2012-02-02 Notified OpenWall "distros" mailing list again, due to previous\r\n technical problems.\r\n\r\n2012-02-04 libraptor developer provided patches to all notified parties.\r\n\r\n2012-02-22 Extensive arguing between vendors about embargo/release date.\r\n\r\n2012-03-06 More arguing about release date.\r\n\r\n2012-03-14 Agreed upon release date established.\r\n\r\n2012-03-22 Security updates and vendor advisories released.\r\n\r\n2012-03-24 VSR advisory released.\r\n\r\n\r\nRecommendation\r\n~------------~\r\nUsers of most open source operating system distributions should update to the\r\nlatest librdf package as soon as possible, once a patched version is available\r\nfor their distribution. OpenOffice and LibreOffice packages should also be\r\nupgraded, since these include a custom copy of the library.\r\n\r\nUsers of other operating systems who use LibreOffice or OpenOffice should\r\nupgrade these packages to the latest release versions as soon as possible \r\n\r\nDevelopers of software which rely on librdf or libraptor should assess the risk\r\nof XXE attacks on interpreted XML files and take appropriate actions to notify\r\ntheir users based on how their software operates. VSR would be happy to assist\r\ndevelopers in these efforts on a case-by-case basis.\r\n\r\n\r\nCommon Vulnerabilities and Exposures (CVE) Information\r\n~----------------------------------------------------~\r\nThe Common Vulnerabilities and Exposures (CVE) project has assigned\r\nthe number CVE-2012-0037 to this issue. This is a candidate for\r\ninclusion in the CVE list (http://cve.mitre.org), which standardizes\r\nnames for security problems.\r\n\r\n\r\nAcknowledgements\r\n~--------------~\r\nThanks to Leper for help in preliminary testing.\r\n\r\nThanks to Jan iankko Lieskovsky, Daniel Veillard, Caolan McNamara, and Michael\r\nStahl for performing deeper analysis on the interaction between libraptor and\r\nlibxml2.\r\n\r\n=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=\r\n\r\nReferences:\r\n\r\n1. http://librdf.org/raptor/\r\n\r\n2. http://librdf.org/\r\n\r\n3. http://www.w3.org/RDF/\r\n\r\n\r\n=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=\r\n\r\nThis advisory is distributed for educational purposes only with the sincere\r\nhope that it will help promote public safety. This advisory comes with\r\nabsolutely NO WARRANTY; not even the implied warranty of merchantability or\r\nfitness for a particular purpose. Neither Virtual Security Research, LLC nor\r\nthe author accepts any liability for any direct, indirect, or consequential\r\nloss or damage arising from use of, or reliance on, this information.\r\n\r\nSee the VSR disclosure policy for more information on our responsible\r\ndisclosure practices:\r\n http://www.vsecurity.com/company/disclosure\r\n\r\n=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=\r\n Copyright 2012 Virtual Security Research, LLC. All rights reserved.\r\n\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.4.12 (GNU/Linux)\r\n\r\niD8DBQFPbfkKQ1RSUNR+T+gRAtqLAKCfiu/8wW49/Jtp9Q4+4VvRgXDvegCfcZZf\r\nl3N1P2JkzSJNnVZAuUqwBbs=\r\n=8Uwi\r\n-----END PGP SIGNATURE-----\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2012-04-02T00:00:00", "title": "CVE-2012-0037: libraptor - XXE in RDF/XML File Interpretation (Multiple office products affected)", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:44", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2012-0037"], "modified": "2012-04-02T00:00:00", "id": "SECURITYVULNS:DOC:27872", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:27872", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-08-31T11:09:46", "references": ["https://vulners.com/securityvulns/securityvulns:doc:27872", "https://vulners.com/securityvulns/securityvulns:doc:27835"], "description": "It's possible to inject file via XML", "edition": 1, "reporter": "BUGTRAQ", "published": "2012-04-02T00:00:00", "title": "raptor library (libreoffice / openoffice) file injection", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:09:46", "vector": "NONE", "value": 4.3}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "raptor", "version": "1.4", "operator": "eq"}], "cvelist": ["CVE-2012-0037"], "modified": "2012-04-02T00:00:00", "id": "SECURITYVULNS:VULN:12287", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:12287", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-08-31T11:10:44", "references": [], "description": "-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n- -------------------------------------------------------------------------\r\nDebian Security Advisory DSA-2438-1 security@debian.org\r\nhttp://www.debian.org/security/ Moritz Muehlenhoff\r\nMarch 22, 2012 http://www.debian.org/security/faq\r\n- -------------------------------------------------------------------------\r\n\r\nPackage : raptor\r\nVulnerability : programming error\r\nProblem type : remote\r\nDebian-specific: no\r\nCVE ID : CVE-2012-0037\r\n\r\nIt was discovered that Raptor, a RDF parser and serializer library,\r\nallows file inclusion through XML entities, resulting in information\r\ndisclosure.\r\n\r\nFor the stable distribution (squeeze), this problem has been fixed in\r\nversion 1.4.21-2+squeeze1.\r\n\r\nFor the unstable distribution (sid), this problem will be fixed soon.\r\n\r\nWe recommend that you upgrade your raptor packages.\r\n\r\nFurther information about Debian Security Advisories, how to apply\r\nthese updates to your system and frequently asked questions can be\r\nfound at: http://www.debian.org/security/\r\n\r\nMailing list: debian-security-announce@lists.debian.org\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.4.12 (GNU/Linux)\r\n\r\niEYEARECAAYFAk9rVPkACgkQXm3vHE4uylq8aQCdF/Y2xxs+4R/d35s0NCEIA2nA\r\nxWcAoMvbz4NkFXUmj/FZQmkazp1tg8xC\r\n=Jhyh\r\n-----END PGP SIGNATURE-----\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2012-03-26T00:00:00", "title": "[SECURITY] [DSA 2438-1] raptor security update", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:44", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2012-0037"], "modified": "2012-03-26T00:00:00", "id": "SECURITYVULNS:DOC:27835", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:27835", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "openvas": [{"lastseen": "2018-01-02T10:56:44", "references": ["2012:0411", "http://lists.centos.org/pipermail/centos-announce/2012-March/018519.html"], "pluginID": "881155", "description": "Check for the Version of openoffice.org-base", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-07-30T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "CentOS Update for openoffice.org-base CESA-2012:0411 centos5 ", "type": "openvas", "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2017-12-27T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=881155", "id": "OPENVAS:881155", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for openoffice.org-base CESA-2012:0411 centos5 \n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"OpenOffice.org is an office productivity suite that includes desktop\n applications, such as a word processor, spreadsheet application,\n presentation manager, formula editor, and a drawing program. OpenOffice.org\n embeds a copy of Raptor, which provides parsers for Resource Description\n Framework (RDF) files.\n\n An XML External Entity expansion flaw was found in the way Raptor processed\n RDF files. If OpenOffice.org were to open a specially-crafted file (such\n as an OpenDocument Format or OpenDocument Presentation file), it could\n possibly allow a remote attacker to obtain a copy of an arbitrary local\n file that the user running OpenOffice.org had access to. A bug in the way\n Raptor handled external entities could cause OpenOffice.org to crash or,\n possibly, execute arbitrary code with the privileges of the user running \n OpenOffice.org. (CVE-2012-0037)\n \n Red Hat would like to thank Timothy D. Morgan of VSR for reporting this\n issue.\n \n All OpenOffice.org users are advised to upgrade to these updated packages,\n which contain backported patches to correct this issue. All running\n instances of OpenOffice.org applications must be restarted for this update\n to take effect.\";\n\ntag_affected = \"openoffice.org-base on CentOS 5\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2012-March/018519.html\");\n script_id(881155);\n script_version(\"$Revision: 8249 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-27 07:29:56 +0100 (Wed, 27 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-30 16:24:26 +0530 (Mon, 30 Jul 2012)\");\n script_cve_id(\"CVE-2012-0037\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_xref(name: \"CESA\", value: \"2012:0411\");\n script_name(\"CentOS Update for openoffice.org-base CESA-2012:0411 centos5 \");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of openoffice.org-base\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-base\", rpm:\"openoffice.org-base~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-calc\", rpm:\"openoffice.org-calc~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-core\", rpm:\"openoffice.org-core~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-draw\", rpm:\"openoffice.org-draw~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-emailmerge\", rpm:\"openoffice.org-emailmerge~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-graphicfilter\", rpm:\"openoffice.org-graphicfilter~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-headless\", rpm:\"openoffice.org-headless~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-impress\", rpm:\"openoffice.org-impress~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-javafilter\", rpm:\"openoffice.org-javafilter~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-af_ZA\", rpm:\"openoffice.org-langpack-af_ZA~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-ar\", rpm:\"openoffice.org-langpack-ar~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-as_IN\", rpm:\"openoffice.org-langpack-as_IN~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-bg_BG\", rpm:\"openoffice.org-langpack-bg_BG~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-bn\", rpm:\"openoffice.org-langpack-bn~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-ca_ES\", rpm:\"openoffice.org-langpack-ca_ES~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-cs_CZ\", rpm:\"openoffice.org-langpack-cs_CZ~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-cy_GB\", rpm:\"openoffice.org-langpack-cy_GB~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-da_DK\", rpm:\"openoffice.org-langpack-da_DK~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-de\", rpm:\"openoffice.org-langpack-de~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-el_GR\", rpm:\"openoffice.org-langpack-el_GR~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-es\", rpm:\"openoffice.org-langpack-es~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-et_EE\", rpm:\"openoffice.org-langpack-et_EE~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-eu_ES\", rpm:\"openoffice.org-langpack-eu_ES~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-fi_FI\", rpm:\"openoffice.org-langpack-fi_FI~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-fr\", rpm:\"openoffice.org-langpack-fr~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-ga_IE\", rpm:\"openoffice.org-langpack-ga_IE~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-gl_ES\", rpm:\"openoffice.org-langpack-gl_ES~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-gu_IN\", rpm:\"openoffice.org-langpack-gu_IN~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-he_IL\", rpm:\"openoffice.org-langpack-he_IL~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-hi_IN\", rpm:\"openoffice.org-langpack-hi_IN~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-hr_HR\", rpm:\"openoffice.org-langpack-hr_HR~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-hu_HU\", rpm:\"openoffice.org-langpack-hu_HU~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-it\", rpm:\"openoffice.org-langpack-it~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-ja_JP\", rpm:\"openoffice.org-langpack-ja_JP~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-kn_IN\", rpm:\"openoffice.org-langpack-kn_IN~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-ko_KR\", rpm:\"openoffice.org-langpack-ko_KR~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-lt_LT\", rpm:\"openoffice.org-langpack-lt_LT~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-ml_IN\", rpm:\"openoffice.org-langpack-ml_IN~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-mr_IN\", rpm:\"openoffice.org-langpack-mr_IN~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-ms_MY\", rpm:\"openoffice.org-langpack-ms_MY~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-nb_NO\", rpm:\"openoffice.org-langpack-nb_NO~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-nl\", rpm:\"openoffice.org-langpack-nl~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-nn_NO\", rpm:\"openoffice.org-langpack-nn_NO~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-nr_ZA\", rpm:\"openoffice.org-langpack-nr_ZA~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-nso_ZA\", rpm:\"openoffice.org-langpack-nso_ZA~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-or_IN\", rpm:\"openoffice.org-langpack-or_IN~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-pa_IN\", rpm:\"openoffice.org-langpack-pa_IN~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-pl_PL\", rpm:\"openoffice.org-langpack-pl_PL~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-pt_BR\", rpm:\"openoffice.org-langpack-pt_BR~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-pt_PT\", rpm:\"openoffice.org-langpack-pt_PT~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-ru\", rpm:\"openoffice.org-langpack-ru~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-sk_SK\", rpm:\"openoffice.org-langpack-sk_SK~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-sl_SI\", rpm:\"openoffice.org-langpack-sl_SI~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-sr_CS\", rpm:\"openoffice.org-langpack-sr_CS~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-ss_ZA\", rpm:\"openoffice.org-langpack-ss_ZA~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-st_ZA\", rpm:\"openoffice.org-langpack-st_ZA~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-sv\", rpm:\"openoffice.org-langpack-sv~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-ta_IN\", rpm:\"openoffice.org-langpack-ta_IN~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-te_IN\", rpm:\"openoffice.org-langpack-te_IN~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-th_TH\", rpm:\"openoffice.org-langpack-th_TH~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-tn_ZA\", rpm:\"openoffice.org-langpack-tn_ZA~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-tr_TR\", rpm:\"openoffice.org-langpack-tr_TR~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-ts_ZA\", rpm:\"openoffice.org-langpack-ts_ZA~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-ur\", rpm:\"openoffice.org-langpack-ur~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-ve_ZA\", rpm:\"openoffice.org-langpack-ve_ZA~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-xh_ZA\", rpm:\"openoffice.org-langpack-xh_ZA~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-zh_CN\", rpm:\"openoffice.org-langpack-zh_CN~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-zh_TW\", rpm:\"openoffice.org-langpack-zh_TW~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-langpack-zu_ZA\", rpm:\"openoffice.org-langpack-zu_ZA~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-math\", rpm:\"openoffice.org-math~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-pyuno\", rpm:\"openoffice.org-pyuno~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-sdk\", rpm:\"openoffice.org-sdk~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-sdk-doc\", rpm:\"openoffice.org-sdk-doc~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-testtools\", rpm:\"openoffice.org-testtools~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-ure\", rpm:\"openoffice.org-ure~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-writer\", rpm:\"openoffice.org-writer~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org-xsltfilter\", rpm:\"openoffice.org-xsltfilter~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openoffice.org\", rpm:\"openoffice.org~3.1.1~19.10.el5_8.1\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2017-12-04T11:20:30", "references": ["1480-1", "http://www.ubuntu.com/usn/usn-1480-1/"], "pluginID": "841049", "description": "Ubuntu Update for Linux kernel vulnerabilities USN-1480-1", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-06-19T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "title": "Ubuntu Update for raptor USN-1480-1", "type": "openvas", "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2017-12-01T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841049", "id": "OPENVAS:841049", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1480_1.nasl 7960 2017-12-01 06:58:16Z santu $\n#\n# Ubuntu Update for raptor USN-1480-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Timothy D. Morgan discovered that Raptor would unconditionally load XML\n external entities. If a user were tricked into opening a specially crafted\n document in an application linked against Raptor, an attacker could\n possibly obtain access to arbitrary files on the user's system or\n potentially execute arbitrary code with the privileges of the user invoking\n the program.\";\n\ntag_summary = \"Ubuntu Update for Linux kernel vulnerabilities USN-1480-1\";\ntag_affected = \"raptor on Ubuntu 12.04 LTS ,\n Ubuntu 11.10 ,\n Ubuntu 11.04 ,\n Ubuntu 10.04 LTS\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1480-1/\");\n script_id(841049);\n script_version(\"$Revision: 7960 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 07:58:16 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2012-06-19 09:42:22 +0530 (Tue, 19 Jun 2012)\");\n script_cve_id(\"CVE-2012-0037\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_xref(name: \"USN\", value: \"1480-1\");\n script_name(\"Ubuntu Update for raptor USN-1480-1\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-1ubuntu1.1\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-7ubuntu0.1\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU11.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-5ubuntu0.1\", rls:\"UBUNTU11.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU11.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-2ubuntu0.1\", rls:\"UBUNTU11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-02T00:01:07", "references": ["http://www.mandriva.com/en/support/security/advisories/?name=MDVSA-2012:061", "2012:061"], "pluginID": "1361412562310831642", "description": "Check for the Version of raptor", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-08-03T00:00:00", "title": "Mandriva Update for raptor MDVSA-2012:061 (raptor)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Mandrake Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310831642", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310831642", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Mandriva Update for raptor MDVSA-2012:061 (raptor)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"An XML External Entity expansion flaw was found in the way Raptor\n processed RDF files. If an application linked against Raptor were to\n open a specially-crafted RDF file, it could possibly allow a remote\n attacker to obtain a copy of an arbitrary local file that the user\n running the application had access to. A bug in the way Raptor handled\n external entities could cause that application to crash or, possibly,\n execute arbitrary code with the privileges of the user running the\n application (CVE-2012-0037).\n\n The updated packages have been patched to correct this issue.\n\n raptor2 for Mandriva Linux 2011 has been upgraded to the 2.0.7 version\n which is not vulnerable to this issue.\";\n\ntag_affected = \"raptor on Mandriva Linux 2011.0,\n Mandriva Enterprise Server 5.2,\n Mandriva Linux 2010.1\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://www.mandriva.com/en/support/security/advisories/?name=MDVSA-2012:061\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.831642\");\n script_version(\"$Revision: 9352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-08-03 09:58:01 +0530 (Fri, 03 Aug 2012)\");\n script_cve_id(\"CVE-2012-0037\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_xref(name: \"MDVSA\", value: \"2012:061\");\n script_name(\"Mandriva Update for raptor MDVSA-2012:061 (raptor)\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of raptor\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Mandrake Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/mandriva_mandrake_linux\", \"ssh/login/release\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"MNDK_2011.0\")\n{\n\n if ((res = isrpmvuln(pkg:\"libraptor1\", rpm:\"libraptor1~1.4.21~5.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libraptor2_0\", rpm:\"libraptor2_0~2.0.7~0.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libraptor2-devel\", rpm:\"libraptor2-devel~2.0.7~0.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libraptor-devel\", rpm:\"libraptor-devel~1.4.21~5.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"raptor\", rpm:\"raptor~1.4.21~5.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"raptor2\", rpm:\"raptor2~2.0.7~0.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"raptor2\", rpm:\"raptor2~2.0.7~0.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor1\", rpm:\"lib64raptor1~1.4.21~5.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor2_0\", rpm:\"lib64raptor2_0~2.0.7~0.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor2-devel\", rpm:\"lib64raptor2-devel~2.0.7~0.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor-devel\", rpm:\"lib64raptor-devel~1.4.21~5.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"MNDK_mes5.2\")\n{\n\n if ((res = isrpmvuln(pkg:\"libraptor1\", rpm:\"libraptor1~1.4.18~3.1mdvmes5.2\", rls:\"MNDK_mes5.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libraptor-devel\", rpm:\"libraptor-devel~1.4.18~3.1mdvmes5.2\", rls:\"MNDK_mes5.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"raptor\", rpm:\"raptor~1.4.18~3.1mdvmes5.2\", rls:\"MNDK_mes5.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor1\", rpm:\"lib64raptor1~1.4.18~3.1mdvmes5.2\", rls:\"MNDK_mes5.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor-devel\", rpm:\"lib64raptor-devel~1.4.18~3.1mdvmes5.2\", rls:\"MNDK_mes5.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"MNDK_2010.1\")\n{\n\n if ((res = isrpmvuln(pkg:\"libraptor1\", rpm:\"libraptor1~1.4.21~5.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libraptor-devel\", rpm:\"libraptor-devel~1.4.21~5.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"raptor\", rpm:\"raptor~1.4.21~5.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor1\", rpm:\"lib64raptor1~1.4.21~5.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor-devel\", rpm:\"lib64raptor-devel~1.4.21~5.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-01T23:59:02", "references": [], "pluginID": "136141256231071242", "description": "The remote host is missing an update to raptor\nannounced via advisory DSA 2438-1.", "edition": 3, "reporter": "Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com", "published": "2012-04-30T00:00:00", "title": "Debian Security Advisory DSA 2438-1 (raptor)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:136141256231071242", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231071242", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_2438_1.nasl 9352 2018-04-06 07:13:02Z cfischer $\n# Description: Auto-generated from advisory DSA 2438-1 (raptor)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"It was discovered that Raptor, a RDF parser and serializer library,\nallows file inclusion through XML entities, resulting in information\ndisclosure.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1.4.21-2+squeeze1.\n\nFor the unstable distribution (sid), this problem will be fixed soon.\n\nWe recommend that you upgrade your raptor packages.\";\ntag_summary = \"The remote host is missing an update to raptor\nannounced via advisory DSA 2438-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202438-1\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.71242\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_cve_id(\"CVE-2012-0037\");\n script_version(\"$Revision: 9352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-04-30 07:54:59 -0400 (Mon, 30 Apr 2012)\");\n script_name(\"Debian Security Advisory DSA 2438-1 (raptor)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\nres = \"\";\nreport = \"\";\nif((res = isdpkgvuln(pkg:\"libraptor1\", ver:\"1.4.21-2+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libraptor1-dbg\", ver:\"1.4.21-2+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libraptor1-dev\", ver:\"1.4.21-2+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libraptor1-doc\", ver:\"1.4.21-2+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"raptor-utils\", ver:\"1.4.21-2+squeeze1\", rls:\"DEB6.0\")) != NULL) {\n report += res;\n}\n\nif(report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-02T00:02:27", "references": ["http://lists.fedoraproject.org/pipermail/package-announce/2012-July/084481.html", "2012-10591"], "pluginID": "1361412562310864580", "description": "Check for the Version of raptor", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-08-30T00:00:00", "title": "Fedora Update for raptor FEDORA-2012-10591", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2018-02-03T00:00:00", "id": "OPENVAS:1361412562310864580", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310864580", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for raptor FEDORA-2012-10591\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"raptor on Fedora 17\";\ntag_insight = \"Raptor is the RDF Parser Toolkit for Redland that provides\n a set of standalone RDF parsers, generating triples from RDF/XML\n or N-Triples.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2012-July/084481.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.864580\");\n script_version(\"$Revision: 8649 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-02-03 13:16:43 +0100 (Sat, 03 Feb 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-08-30 11:15:05 +0530 (Thu, 30 Aug 2012)\");\n script_cve_id(\"CVE-2012-0037\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_xref(name: \"FEDORA\", value: \"2012-10591\");\n script_name(\"Fedora Update for raptor FEDORA-2012-10591\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of raptor\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC17\")\n{\n\n if ((res = isrpmvuln(pkg:\"raptor\", rpm:\"raptor~1.4.21~12.fc17\", rls:\"FC17\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-01T23:58:13", "references": ["http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078242.html", "2012-4663"], "pluginID": "1361412562310864157", "description": "Check for the Version of raptor2", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-04-13T00:00:00", "title": "Fedora Update for raptor2 FEDORA-2012-4663", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310864157", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310864157", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for raptor2 FEDORA-2012-4663\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"raptor2 on Fedora 16\";\ntag_insight = \"Raptor is the RDF Parser Toolkit for Redland that provides\n a set of standalone RDF parsers, generating triples from RDF/XML\n or N-Triples.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078242.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.864157\");\n script_version(\"$Revision: 9352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-04-13 10:32:33 +0530 (Fri, 13 Apr 2012)\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_cve_id(\"CVE-2012-0037\");\n script_xref(name: \"FEDORA\", value: \"2012-4663\");\n script_name(\"Fedora Update for raptor2 FEDORA-2012-4663\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of raptor2\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC16\")\n{\n\n if ((res = isrpmvuln(pkg:\"raptor2\", rpm:\"raptor2~2.0.7~1.fc16\", rls:\"FC16\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-01T23:58:15", "references": ["2012-10590", "http://lists.fedoraproject.org/pipermail/package-announce/2012-July/084486.html"], "pluginID": "1361412562310864584", "description": "Check for the Version of raptor", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-08-03T00:00:00", "title": "Fedora Update for raptor FEDORA-2012-10590", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310864584", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310864584", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for raptor FEDORA-2012-10590\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"raptor on Fedora 16\";\ntag_insight = \"Raptor is the RDF Parser Toolkit for Redland that provides\n a set of standalone RDF parsers, generating triples from RDF/XML\n or N-Triples.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2012-July/084486.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.864584\");\n script_version(\"$Revision: 9352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-08-03 11:15:37 +0530 (Fri, 03 Aug 2012)\");\n script_cve_id(\"CVE-2012-0037\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_xref(name: \"FEDORA\", value: \"2012-10590\");\n script_name(\"Fedora Update for raptor FEDORA-2012-10590\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of raptor\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC16\")\n{\n\n if ((res = isrpmvuln(pkg:\"raptor\", rpm:\"raptor~1.4.21~12.fc16\", rls:\"FC16\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-01-11T11:07:27", "references": ["http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078242.html", "2012-4663"], "pluginID": "864157", "description": "Check for the Version of raptor2", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-04-13T00:00:00", "title": "Fedora Update for raptor2 FEDORA-2012-4663", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2018-01-10T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=864157", "id": "OPENVAS:864157", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for raptor2 FEDORA-2012-4663\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"raptor2 on Fedora 16\";\ntag_insight = \"Raptor is the RDF Parser Toolkit for Redland that provides\n a set of standalone RDF parsers, generating triples from RDF/XML\n or N-Triples.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078242.html\");\n script_id(864157);\n script_version(\"$Revision: 8352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-10 08:01:57 +0100 (Wed, 10 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-04-13 10:32:33 +0530 (Fri, 13 Apr 2012)\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_cve_id(\"CVE-2012-0037\");\n script_xref(name: \"FEDORA\", value: \"2012-4663\");\n script_name(\"Fedora Update for raptor2 FEDORA-2012-4663\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of raptor2\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC16\")\n{\n\n if ((res = isrpmvuln(pkg:\"raptor2\", rpm:\"raptor2~2.0.7~1.fc16\", rls:\"FC16\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-01-11T11:07:21", "references": ["2012-10590", "http://lists.fedoraproject.org/pipermail/package-announce/2012-July/084486.html"], "pluginID": "864584", "description": "Check for the Version of raptor", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-08-03T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "Fedora Update for raptor FEDORA-2012-10590", "type": "openvas", "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2018-01-10T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=864584", "id": "OPENVAS:864584", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for raptor FEDORA-2012-10590\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"raptor on Fedora 16\";\ntag_insight = \"Raptor is the RDF Parser Toolkit for Redland that provides\n a set of standalone RDF parsers, generating triples from RDF/XML\n or N-Triples.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2012-July/084486.html\");\n script_id(864584);\n script_version(\"$Revision: 8352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-10 08:01:57 +0100 (Wed, 10 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-08-03 11:15:37 +0530 (Fri, 03 Aug 2012)\");\n script_cve_id(\"CVE-2012-0037\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_xref(name: \"FEDORA\", value: \"2012-10590\");\n script_name(\"Fedora Update for raptor FEDORA-2012-10590\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of raptor\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC16\")\n{\n\n if ((res = isrpmvuln(pkg:\"raptor\", rpm:\"raptor~1.4.21~12.fc16\", rls:\"FC16\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-01-02T10:57:26", "references": ["http://www.mandriva.com/en/support/security/advisories/?name=MDVSA-2012:061", "2012:061"], "pluginID": "831642", "description": "Check for the Version of raptor", "edition": 3, "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "published": "2012-08-03T00:00:00", "title": "Mandriva Update for raptor MDVSA-2012:061 (raptor)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Mandrake Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2018-01-01T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=831642", "id": "OPENVAS:831642", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Mandriva Update for raptor MDVSA-2012:061 (raptor)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"An XML External Entity expansion flaw was found in the way Raptor\n processed RDF files. If an application linked against Raptor were to\n open a specially-crafted RDF file, it could possibly allow a remote\n attacker to obtain a copy of an arbitrary local file that the user\n running the application had access to. A bug in the way Raptor handled\n external entities could cause that application to crash or, possibly,\n execute arbitrary code with the privileges of the user running the\n application (CVE-2012-0037).\n\n The updated packages have been patched to correct this issue.\n\n raptor2 for Mandriva Linux 2011 has been upgraded to the 2.0.7 version\n which is not vulnerable to this issue.\";\n\ntag_affected = \"raptor on Mandriva Linux 2011.0,\n Mandriva Enterprise Server 5.2,\n Mandriva Linux 2010.1\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://www.mandriva.com/en/support/security/advisories/?name=MDVSA-2012:061\");\n script_id(831642);\n script_version(\"$Revision: 8265 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-01 07:29:23 +0100 (Mon, 01 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-08-03 09:58:01 +0530 (Fri, 03 Aug 2012)\");\n script_cve_id(\"CVE-2012-0037\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_xref(name: \"MDVSA\", value: \"2012:061\");\n script_name(\"Mandriva Update for raptor MDVSA-2012:061 (raptor)\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of raptor\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Mandrake Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/mandriva_mandrake_linux\", \"ssh/login/release\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"MNDK_2011.0\")\n{\n\n if ((res = isrpmvuln(pkg:\"libraptor1\", rpm:\"libraptor1~1.4.21~5.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libraptor2_0\", rpm:\"libraptor2_0~2.0.7~0.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libraptor2-devel\", rpm:\"libraptor2-devel~2.0.7~0.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libraptor-devel\", rpm:\"libraptor-devel~1.4.21~5.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"raptor\", rpm:\"raptor~1.4.21~5.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"raptor2\", rpm:\"raptor2~2.0.7~0.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"raptor2\", rpm:\"raptor2~2.0.7~0.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor1\", rpm:\"lib64raptor1~1.4.21~5.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor2_0\", rpm:\"lib64raptor2_0~2.0.7~0.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor2-devel\", rpm:\"lib64raptor2-devel~2.0.7~0.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor-devel\", rpm:\"lib64raptor-devel~1.4.21~5.1\", rls:\"MNDK_2011.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"MNDK_mes5.2\")\n{\n\n if ((res = isrpmvuln(pkg:\"libraptor1\", rpm:\"libraptor1~1.4.18~3.1mdvmes5.2\", rls:\"MNDK_mes5.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libraptor-devel\", rpm:\"libraptor-devel~1.4.18~3.1mdvmes5.2\", rls:\"MNDK_mes5.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"raptor\", rpm:\"raptor~1.4.18~3.1mdvmes5.2\", rls:\"MNDK_mes5.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor1\", rpm:\"lib64raptor1~1.4.18~3.1mdvmes5.2\", rls:\"MNDK_mes5.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor-devel\", rpm:\"lib64raptor-devel~1.4.18~3.1mdvmes5.2\", rls:\"MNDK_mes5.2\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"MNDK_2010.1\")\n{\n\n if ((res = isrpmvuln(pkg:\"libraptor1\", rpm:\"libraptor1~1.4.21~5.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libraptor-devel\", rpm:\"libraptor-devel~1.4.21~5.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"raptor\", rpm:\"raptor~1.4.21~5.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor1\", rpm:\"lib64raptor1~1.4.21~5.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64raptor-devel\", rpm:\"lib64raptor-devel~1.4.21~5.1mdv2010.2\", rls:\"MNDK_2010.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "nessus": [{"lastseen": "2018-09-01T23:57:18", "references": ["https://bugzilla.novell.com/show_bug.cgi?id=714787", "https://bugzilla.novell.com/show_bug.cgi?id=719656", "https://bugzilla.novell.com/show_bug.cgi?id=703032", "https://bugs.freedesktop.org/show_bug.cgi?id=35513", "https://bugzilla.novell.com/show_bug.cgi?id=722045", "https://bugs.freedesktop.org/show_bug.cgi?id=42073", "https://bugzilla.novell.com/show_bug.cgi?id=719989", "https://bugzilla.novell.com/show_bug.cgi?id=715094", "https://bugzilla.novell.com/show_bug.cgi?id=740453", "https://bugs.freedesktop.org/show_bug.cgi?id=41245", "https://bugzilla.novell.com/show_bug.cgi?id=706792", "https://bugs.freedesktop.org/show_bug.cgi?id=31966", "https://bugzilla.novell.com/show_bug.cgi?id=746996", "https://bugzilla.novell.com/show_bug.cgi?id=741043", "https://bugs.freedesktop.org/show_bug.cgi?id=40298", "https://bugs.freedesktop.org/show_bug.cgi?id=46337", "https://bugzilla.novell.com/show_bug.cgi?id=693388", "https://bugzilla.novell.com/show_bug.cgi?id=705949", "https://bugs.freedesktop.org/show_bug.cgi?id=46165", "https://bugzilla.novell.com/show_bug.cgi?id=726174", "https://bugs.freedesktop.org/show_bug.cgi?id=42543", "https://bugzilla.novell.com/show_bug.cgi?id=748198", "https://bugzilla.novell.com/show_bug.cgi?id=718694", "https://bugs.freedesktop.org/show_bug.cgi?id=35965", "https://bugzilla.novell.com/show_bug.cgi?id=720443", "https://bugs.freedesktop.org/show_bug.cgi?id=40320", "https://bugzilla.novell.com/show_bug.cgi?id=718227", "https://bugzilla.novell.com/show_bug.cgi?id=722918", "https://bugzilla.novell.com/show_bug.cgi?id=715115", "https://features.opensuse.org/312645", "https://bugs.freedesktop.org/show_bug.cgi?id=38441", "https://bugzilla.novell.com/show_bug.cgi?id=748548", "https://bugzilla.novell.com/show_bug.cgi?id=705991", "https://bugzilla.novell.com/show_bug.cgi?id=707157", "https://bugzilla.novell.com/show_bug.cgi?id=705977", "https://bugs.freedesktop.org/show_bug.cgi?id=37129", "https://bugzilla.novell.com/show_bug.cgi?id=734781", "https://bugs.freedesktop.org/show_bug.cgi?id=39694", "https://bugs.freedesktop.org/show_bug.cgi?id=39485", "https://bugzilla.novell.com/show_bug.cgi?id=657909", "https://bugzilla.novell.com/show_bug.cgi?id=728603", "https://bugs.freedesktop.org/show_bug.cgi?id=45560", "https://bugs.launchpad.net/bugs/854626", "https://bugzilla.novell.com/show_bug.cgi?id=718971", "https://bugzilla.novell.com/show_bug.cgi?id=733864", "https://bugs.freedesktop.org/show_bug.cgi?id=40701", "https://bugs.freedesktop.org/show_bug.cgi?id=40461", "http://openoffice.org/bugzilla/show_bug.cgi?id=101776", "https://bugzilla.novell.com/show_bug.cgi?id=741182", "https://bugs.freedesktop.org/show_bug.cgi?id=41681", "https://bugzilla.novell.com/show_bug.cgi?id=655408", "https://bugzilla.novell.com/show_bug.cgi?id=740117", "https://bugzilla.novell.com/show_bug.cgi?id=706138", "https://bugzilla.novell.com/show_bug.cgi?id=726152", "https://bugzilla.novell.com/show_bug.cgi?id=621739", "http://openoffice.org/bugzilla/show_bug.cgi?id=116448", "https://bugzilla.novell.com/show_bug.cgi?id=699334", "https://bugzilla.novell.com/show_bug.cgi?id=737190", "https://bugzilla.redhat.com/show_bug.cgi?id=794679", "https://bugzilla.novell.com/show_bug.cgi?id=685123", "https://bugzilla.redhat.com/show_bug.cgi?id=667082", "https://bugzilla.novell.com/show_bug.cgi?id=715543", "https://bugs.freedesktop.org/show_bug.cgi?id=39657", "https://bugs.freedesktop.org/show_bug.cgi?id=38391", "https://bugzilla.novell.com/show_bug.cgi?id=677811", "https://bugzilla.novell.com/show_bug.cgi?id=737921", "https://bugzilla.novell.com/show_bug.cgi?id=705985", "https://bugzilla.novell.com/show_bug.cgi?id=728559", "https://bugzilla.novell.com/show_bug.cgi?id=722644", "https://bugzilla.novell.com/show_bug.cgi?id=717290", "https://bugzilla.novell.com/show_bug.cgi?id=720948", "https://bugzilla.novell.com/show_bug.cgi?id=747471", "https://bugzilla.novell.com/show_bug.cgi?id=695479", "http://lists.opensuse.org/opensuse-updates/2012-03/msg00052.html", "https://bugzilla.novell.com/show_bug.cgi?id=734734", "https://bugzilla.novell.com/show_bug.cgi?id=417818", "https://bugzilla.novell.com/show_bug.cgi?id=740032", "https://bugzilla.novell.com/show_bug.cgi?id=719887", "https://bugs.freedesktop.org/show_bug.cgi?id=39510", "https://bugzilla.novell.com/show_bug.cgi?id=724087", "https://bugzilla.novell.com/show_bug.cgi?id=693238", "https://bugs.freedesktop.org/show_bug.cgi?id=32861", "https://bugzilla.novell.com/show_bug.cgi?id=715104", "https://bugzilla.novell.com/show_bug.cgi?id=727504", "https://bugzilla.novell.com/show_bug.cgi?id=736495", "https://bugzilla.novell.com/show_bug.cgi?id=742178", "https://bugzilla.novell.com/show_bug.cgi?id=705956", "http://openoffice.org/bugzilla/show_bug.cgi?id=117010", "https://bugzilla.novell.com/show_bug.cgi?id=723074", "https://bugs.freedesktop.org/show_bug.cgi?id=41995", "https://bugs.freedesktop.org/show_bug.cgi?id=38286", "https://bugs.freedesktop.org/show_bug.cgi?id=44816", "https://bugzilla.novell.com/show_bug.cgi?id=738113", "https://bugs.freedesktop.org/show_bug.cgi?id=37195", "https://bugzilla.novell.com/show_bug.cgi?id=735533", "https://bugs.freedesktop.org/show_bug.cgi?id=41022", "https://bugzilla.novell.com/show_bug.cgi?id=704274", "https://bugzilla.novell.com/show_bug.cgi?id=653688"], "pluginID": "74584", "description": "- updated to libreoffice-3.4.5.4 (SUSE 3.4.5-rc2)\n\n - calc\n\n - pie charts colors messed in XLS import (fdo#40320)\n\n - correctly import data point formats in data series (fdo#40320)\n\n - components\n\n - crash when parsing XML signatures (fdo#39657)\n\n - broken getDataArray (fdo#46165, fdo#38441, i#117010)\n\n - don't paint a frame around the list of edit boxes (fdo#42543)\n\n - inconsistent compression method for encrypted documents (bnc#653688)\n\n - filters\n\n - more on bentConnectors (bnc#736495)\n\n - wrong text color in smartArt (bnc#746996)\n\n - reading of w:textbox contents (bnc#693388)\n\n - textbox position and size DOCX import (fdo#45560)\n\n - RTF/DOCX import of transparent frames (bnc#695479)\n\n - consecutive frames in RTF/DOCX import (bnc#703032)\n\n - handling of frame properties in RTF import (bnc#417818)\n\n - force imported XLSX active tab to be shown (bnc#748198)\n\n - create TableManager for inside shapes (bnc#747471, bnc#693238)\n\n - textboxes import with OLE objects inside (bnc#747471, bnc#693238)\n\n - impress\n\n - do not create an empty slide when printing handouts (fdo#31966)\n\n - libs-core\n\n - default shortcut for .uno:SearchDialog should be Ctrl+H\n\n - crash using instances dialog of dataform navigator (fdo#44816)\n\n - libs-extern\n\n - disable problematic reading of external entities in raptor\n\n - libs-gui\n\n - correctly calculate leap year\n\n - use proper Indian Rupee currency symbol U+20B9 (rh#794679)\n\n - writer\n\n - field refreshing (fdo#39694)\n\n - more layout crashers (i#101776, fdo#39510)\n\n - textbox borders style and width in DOCX import (fdo#45560)\n\n - expand all text fields when setting properties (fdo#42073)\n\n - updated to libreoffice-3.4.5.3 (SUSE 3.4.5-rc1)\n\n - version 3.4.5.3, tag suse-3.4.5.3 (SUSE LO 3.4.5-rc1)\n\n - SmartArt import\n\n - custom shapes import\n\n - Oracle Java 1.7.0 detection\n\n - reading AES-encrypted ODF 1.2 documents as generated by LO 3.5\n\n - base\n\n - iterator misuse (fdo #44040, bnc#742178)\n\n - calc\n\n - allow pasting to multiple ranges (bnc#715094)\n\n - correctly convert chart data ranges (bnc#727504)\n\n - definedName corruption for XLSX export (bnc#741182)\n\n - adjust/shrink the ranges while copying (bnc#677811)\n\n - extra graph data is displayed for label (bnc#717290)\n\n - getCellRangeByName failure for named range (bnc#738113)\n\n - graph in XLS file has dates displayed wrong (bnc#720443)\n\n - improve performance of large Excel documents (bnc#715104)\n\n - display page background color/image properly (bnc#722045)\n\n - pivot table output becoming empty on re-save (bnc#715543)\n\n - encode virtual paths to local volume correctly (bnc#719887)\n\n - avoid adjusting cell-anchored objects on other sheets (bnc#726152)\n\n - make sure to adjust the sheet index of drawing objects (bnc#733864)\n\n - make the data validation popup more reliable (fdo #36851, bnc#737190)\n\n - filters\n\n - table style (bnc#705991)\n\n - text rotation fixes (bnc#734734)\n\n - crash in PPTX import (bnc#706792)\n\n - read w:sdt* contents (bnc#705949)\n\n - connector shape fixes (bnc#719989)\n\n - legacy fragment import (bnc#699334)\n\n - non-working Excel macros (bnc#705977)\n\n - free drawn curves import (bnc#657909)\n\n - group shape transformations (bnc#621739)\n\n - extLst of drawings in diagrams import (bnc#655408)\n\n - flip properties of custom shapes import (bnc#705985)\n\n - line spacing is used from previous values (bnc#734734)\n\n - missing ooxml customshape->mso shape name entries (bnc#737921)\n\n - word doesn't break the numberings and prefers hiding them (bnc#707157)\n\n - impress\n\n - undo corruption (bnc#685123)\n\n - do not set duplicate master slide names (bnc#735533)\n\n - libs-core\n\n - handle copy and paste from ConsoleOne (bnc#704274)\n\n - VBA control events not working, broken eventattacher (bnc#718227)\n\n - 'General Error' when double-click graphic in presentation (bnc#720948)\n\n - libs-extern-sys\n\n - upgrade graphite to 1.0.3 fix surrogate support\n\n - libs-gui\n\n - crash at exit (bnc#728603)\n\n - radial gradient offset (bnc#714787)\n\n - horizontal scrollbars with KDE oxygen style (bnc#722918)\n\n - rendering of metafiles embedded in EMF+ (updated) (bnc#705956)\n\n - postprocess\n\n - make the 3D transitions work again (bnc#728559)\n\n - ure\n\n - make Duden Korrektor 5 and 6 work\n\n - writer\n\n - frame selection (bnc#740117)\n\n - crash when editing index (bnc#726174)\n\n - order database properties (bnc#740032)\n\n - numbering levels in DOC import (bnc#715115)\n\n - image size issue in DOC import (bnc#718971)\n\n - pointless forward moving of a table (bnc#706138)\n\n - tabs set after the end margin in DOCX import (bnc#693238)\n\n - add hyperlinks by default in Table of Contents (bnc#705956)\n\n - updated to libreoffice-3.4.4.3 (SUSE 3.4.4-rc1 == final) :\n\n - base\n\n - crash when inserting a constant in a query (fdo#38286)\n\n - calc\n\n - crash when modifying a named range\n\n - speed up range name lookup by index (bnc#715104)\n\n - recalculate matrix formula dimension correctly (fdo#39485)\n\n - mark all formula cells dirty when appending a new sheet (fdo#35965)\n\n - components\n\n - handling of SAFEARRAY(s) in olebridge (fdo#38441)\n\n - filters\n\n - auto fit text VIEWING too small in PPT import (fdo#41245)\n\n - impress\n\n - hang in slideshow (fdo#32861)\n\n - crash while dropping texture (fdo#38391)\n\n - libs-core\n\n - recognize .svg in ODF container (fdo#41995)\n\n - dictionaries lost after LibO upgrade (fdo#37195)\n\n - crash when 'Find Record' button is clicked in Base (fdo#40701)\n\n - fix the drawing of dotted and dashed borders in Calc (fdo#37129)\n\n - VBA control events not working; broken eventattacher (bnc#718227)\n\n - libs-extern-sys\n\n - upgrade graphite to 1.0.3 to fix surrogate support\n\n - libs-gui\n\n - crash when changing screen resolution\n\n - let Qt call XInitThreads() (fdo#40298)\n\n - activation order crashes address database (fdo#41022)\n\n - drawing of dotted and dashed borders in Calc (fdo#37129)\n\n - translations\n\n - update translations\n\n - writer\n\n - leak in PDF export (i#116448)\n\n - crash when editing index (bnc#726174)\n\n - crash while processing incorrect range of pages (fdo#35513)\n\n - crash on closing document with footnotes (fdo#39510, lp#854626)", "edition": 5, "reporter": "Tenable", "published": "2014-06-13T00:00:00", "title": "openSUSE Security Update : libreoffice (openSUSE-SU-2012:0433-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2018-08-13T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:libreoffice-mailmerge", "p-cpe:/a:novell:opensuse:libreoffice-l10n-de", "p-cpe:/a:novell:opensuse:libreoffice-l10n-af", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ru", "p-cpe:/a:novell:opensuse:libreoffice", "p-cpe:/a:novell:opensuse:libreoffice-l10n-st", "p-cpe:/a:novell:opensuse:libreoffice-l10n-bg", "p-cpe:/a:novell:opensuse:libreoffice-l10n-pa-IN", "p-cpe:/a:novell:opensuse:libreoffice-help-ja", "p-cpe:/a:novell:opensuse:libreoffice-impress-extensions", "p-cpe:/a:novell:opensuse:libreoffice-l10n-el", "p-cpe:/a:novell:opensuse:libreoffice-help-sl", "p-cpe:/a:novell:opensuse:libreoffice-l10n-rw", "p-cpe:/a:novell:opensuse:libreoffice-officebean", "p-cpe:/a:novell:opensuse:libreoffice-help-ru", "p-cpe:/a:novell:opensuse:libreoffice-help-en-US", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ar", "p-cpe:/a:novell:opensuse:libreoffice-math-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-l10n-en-GB", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ts", "p-cpe:/a:novell:opensuse:libreoffice-debugsource", "p-cpe:/a:novell:opensuse:libreoffice-l10n-uk", "p-cpe:/a:novell:opensuse:libreoffice-gnome-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-help-nl", "p-cpe:/a:novell:opensuse:libreoffice-l10n-br", "p-cpe:/a:novell:opensuse:libreoffice-help-en-GB", "p-cpe:/a:novell:opensuse:libreoffice-l10n-nn", "p-cpe:/a:novell:opensuse:libreoffice-l10n-nb", "p-cpe:/a:novell:opensuse:libreoffice-help-en-ZA", "p-cpe:/a:novell:opensuse:libreoffice-pyuno-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-icon-theme-galaxy", "p-cpe:/a:novell:opensuse:libreoffice-icon-themes-prebuilt", "p-cpe:/a:novell:opensuse:libreoffice-help-da", "p-cpe:/a:novell:opensuse:libreoffice-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-help-pt", "p-cpe:/a:novell:opensuse:libreoffice-l10n-da", "p-cpe:/a:novell:opensuse:libreoffice-base", "p-cpe:/a:novell:opensuse:libreoffice-l10n-sv", "p-cpe:/a:novell:opensuse:libreoffice-l10n-sl", "p-cpe:/a:novell:opensuse:libreoffice-l10n-zh-CN", "p-cpe:/a:novell:opensuse:libreoffice-base-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-l10n-tg", "p-cpe:/a:novell:opensuse:libreoffice-l10n-cy", "p-cpe:/a:novell:opensuse:libreoffice-l10n-fi", "p-cpe:/a:novell:opensuse:libreoffice-l10n-sr", "p-cpe:/a:novell:opensuse:libreoffice-l10n-sk", "p-cpe:/a:novell:opensuse:libreoffice-l10n-es", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ko", "p-cpe:/a:novell:opensuse:libreoffice-l10n-zh-TW", "p-cpe:/a:novell:opensuse:libreoffice-draw-extensions", "p-cpe:/a:novell:opensuse:libreoffice-l10n-nl", "p-cpe:/a:novell:opensuse:libreoffice-help-gl", "p-cpe:/a:novell:opensuse:libreoffice-l10n-hu", "p-cpe:/a:novell:opensuse:libreoffice-l10n-he", "p-cpe:/a:novell:opensuse:libreoffice-filters-optional-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-l10n-th", "p-cpe:/a:novell:opensuse:libreoffice-help-pl", "p-cpe:/a:novell:opensuse:libreoffice-sdk-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-icon-theme-hicontrast", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ss", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ve", "cpe:/o:novell:opensuse:11.4", "p-cpe:/a:novell:opensuse:libreoffice-help-cs", "p-cpe:/a:novell:opensuse:libreoffice-impress-extensions-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-l10n-et", "p-cpe:/a:novell:opensuse:libreoffice-writer", "p-cpe:/a:novell:opensuse:libreoffice-base-drivers-mysql", "p-cpe:/a:novell:opensuse:libreoffice-calc-extensions", "p-cpe:/a:novell:opensuse:libreoffice-l10n-gl", "p-cpe:/a:novell:opensuse:libreoffice-officebean-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-help-gu-IN", "p-cpe:/a:novell:opensuse:libreoffice-impress-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-icon-theme-oxygen", "p-cpe:/a:novell:opensuse:libreoffice-base-drivers-postgresql", "p-cpe:/a:novell:opensuse:libreoffice-l10n-hi-IN", "p-cpe:/a:novell:opensuse:libreoffice-draw", "p-cpe:/a:novell:opensuse:libreoffice-calc-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-icon-theme-tango", "p-cpe:/a:novell:opensuse:libreoffice-l10n-vi", "p-cpe:/a:novell:opensuse:libreoffice-impress", "p-cpe:/a:novell:opensuse:libreoffice-l10n-lt", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ca", "p-cpe:/a:novell:opensuse:libreoffice-filters-optional", "p-cpe:/a:novell:opensuse:libreoffice-l10n-be-BY", "p-cpe:/a:novell:opensuse:libreoffice-help-ko", "p-cpe:/a:novell:opensuse:libreoffice-l10n-hr", "p-cpe:/a:novell:opensuse:libreoffice-writer-extensions", "p-cpe:/a:novell:opensuse:libreoffice-help-fr", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ja", "p-cpe:/a:novell:opensuse:libreoffice-kde", "p-cpe:/a:novell:opensuse:libreoffice-kde4", "p-cpe:/a:novell:opensuse:libreoffice-help-km", "p-cpe:/a:novell:opensuse:libreoffice-help-it", "p-cpe:/a:novell:opensuse:libreoffice-math", "p-cpe:/a:novell:opensuse:libreoffice-help-es", "p-cpe:/a:novell:opensuse:libreoffice-help-hi-IN", "p-cpe:/a:novell:opensuse:libreoffice-l10n-pt-BR", "p-cpe:/a:novell:opensuse:libreoffice-l10n-it", "p-cpe:/a:novell:opensuse:libreoffice-l10n-nr", "p-cpe:/a:novell:opensuse:libreoffice-writer-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ka", "p-cpe:/a:novell:opensuse:libreoffice-l10n-prebuilt", "p-cpe:/a:novell:opensuse:libreoffice-help-pt-BR", "p-cpe:/a:novell:opensuse:libreoffice-l10n-sh", "p-cpe:/a:novell:opensuse:libreoffice-l10n-en-ZA", "p-cpe:/a:novell:opensuse:libreoffice-kde-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-base-drivers-mysql-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-help-sv", "p-cpe:/a:novell:opensuse:libreoffice-l10n-km", "p-cpe:/a:novell:opensuse:libreoffice-testtool-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-l10n-tr", "p-cpe:/a:novell:opensuse:libreoffice-l10n-pl", "p-cpe:/a:novell:opensuse:libreoffice-help-et", "p-cpe:/a:novell:opensuse:libreoffice-l10n-pt", "p-cpe:/a:novell:opensuse:libreoffice-pyuno", "p-cpe:/a:novell:opensuse:libreoffice-calc", "p-cpe:/a:novell:opensuse:libreoffice-icon-theme-crystal", "p-cpe:/a:novell:opensuse:libreoffice-l10n-gu-IN", "p-cpe:/a:novell:opensuse:libreoffice-kde4-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-l10n-cs", "p-cpe:/a:novell:opensuse:libreoffice-base-drivers-postgresql-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-sdk", "p-cpe:/a:novell:opensuse:libreoffice-testtool", "p-cpe:/a:novell:opensuse:libreoffice-help-zh-CN", "p-cpe:/a:novell:opensuse:libreoffice-l10n-xh", "p-cpe:/a:novell:opensuse:libreoffice-gnome", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ga", "p-cpe:/a:novell:opensuse:libreoffice-branding-upstream", "p-cpe:/a:novell:opensuse:libreoffice-help-zh-TW", "p-cpe:/a:novell:opensuse:libreoffice-l10n-fr", "p-cpe:/a:novell:opensuse:libreoffice-draw-extensions-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-help-de", "p-cpe:/a:novell:opensuse:libreoffice-base-extensions", "p-cpe:/a:novell:opensuse:libreoffice-l10n-mk", "p-cpe:/a:novell:opensuse:libreoffice-help-hu", "p-cpe:/a:novell:opensuse:libreoffice-l10n-zu"], "id": "OPENSUSE-2012-187.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=74584", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2012-187.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(74584);\n script_version(\"1.2\");\n script_cvs_date(\"Date: 2018/08/13 14:32:39\");\n\n script_cve_id(\"CVE-2012-0037\");\n\n script_name(english:\"openSUSE Security Update : libreoffice (openSUSE-SU-2012:0433-1)\");\n script_summary(english:\"Check for the openSUSE-2012-187 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - updated to libreoffice-3.4.5.4 (SUSE 3.4.5-rc2)\n\n - calc\n\n - pie charts colors messed in XLS import (fdo#40320)\n\n - correctly import data point formats in data series\n (fdo#40320)\n\n - components\n\n - crash when parsing XML signatures (fdo#39657)\n\n - broken getDataArray (fdo#46165, fdo#38441, i#117010)\n\n - don't paint a frame around the list of edit boxes\n (fdo#42543)\n\n - inconsistent compression method for encrypted documents\n (bnc#653688)\n\n - filters\n\n - more on bentConnectors (bnc#736495)\n\n - wrong text color in smartArt (bnc#746996)\n\n - reading of w:textbox contents (bnc#693388)\n\n - textbox position and size DOCX import (fdo#45560)\n\n - RTF/DOCX import of transparent frames (bnc#695479)\n\n - consecutive frames in RTF/DOCX import (bnc#703032)\n\n - handling of frame properties in RTF import (bnc#417818)\n\n - force imported XLSX active tab to be shown (bnc#748198)\n\n - create TableManager for inside shapes (bnc#747471,\n bnc#693238)\n\n - textboxes import with OLE objects inside (bnc#747471,\n bnc#693238)\n\n - impress\n\n - do not create an empty slide when printing handouts\n (fdo#31966)\n\n - libs-core\n\n - default shortcut for .uno:SearchDialog should be Ctrl+H\n\n - crash using instances dialog of dataform navigator\n (fdo#44816)\n\n - libs-extern\n\n - disable problematic reading of external entities in\n raptor\n\n - libs-gui\n\n - correctly calculate leap year\n\n - use proper Indian Rupee currency symbol U+20B9\n (rh#794679)\n\n - writer\n\n - field refreshing (fdo#39694)\n\n - more layout crashers (i#101776, fdo#39510)\n\n - textbox borders style and width in DOCX import\n (fdo#45560)\n\n - expand all text fields when setting properties\n (fdo#42073)\n\n - updated to libreoffice-3.4.5.3 (SUSE 3.4.5-rc1)\n\n - version 3.4.5.3, tag suse-3.4.5.3 (SUSE LO 3.4.5-rc1)\n\n - SmartArt import\n\n - custom shapes import\n\n - Oracle Java 1.7.0 detection\n\n - reading AES-encrypted ODF 1.2 documents as generated by\n LO 3.5\n\n - base\n\n - iterator misuse (fdo #44040, bnc#742178)\n\n - calc\n\n - allow pasting to multiple ranges (bnc#715094)\n\n - correctly convert chart data ranges (bnc#727504)\n\n - definedName corruption for XLSX export (bnc#741182)\n\n - adjust/shrink the ranges while copying (bnc#677811)\n\n - extra graph data is displayed for label (bnc#717290)\n\n - getCellRangeByName failure for named range (bnc#738113)\n\n - graph in XLS file has dates displayed wrong (bnc#720443)\n\n - improve performance of large Excel documents\n (bnc#715104)\n\n - display page background color/image properly\n (bnc#722045)\n\n - pivot table output becoming empty on re-save\n (bnc#715543)\n\n - encode virtual paths to local volume correctly\n (bnc#719887)\n\n - avoid adjusting cell-anchored objects on other sheets\n (bnc#726152)\n\n - make sure to adjust the sheet index of drawing objects\n (bnc#733864)\n\n - make the data validation popup more reliable (fdo\n #36851, bnc#737190)\n\n - filters\n\n - table style (bnc#705991)\n\n - text rotation fixes (bnc#734734)\n\n - crash in PPTX import (bnc#706792)\n\n - read w:sdt* contents (bnc#705949)\n\n - connector shape fixes (bnc#719989)\n\n - legacy fragment import (bnc#699334)\n\n - non-working Excel macros (bnc#705977)\n\n - free drawn curves import (bnc#657909)\n\n - group shape transformations (bnc#621739)\n\n - extLst of drawings in diagrams import (bnc#655408)\n\n - flip properties of custom shapes import (bnc#705985)\n\n - line spacing is used from previous values (bnc#734734)\n\n - missing ooxml customshape->mso shape name entries\n (bnc#737921)\n\n - word doesn't break the numberings and prefers hiding\n them (bnc#707157)\n\n - impress\n\n - undo corruption (bnc#685123)\n\n - do not set duplicate master slide names (bnc#735533)\n\n - libs-core\n\n - handle copy and paste from ConsoleOne (bnc#704274)\n\n - VBA control events not working, broken eventattacher\n (bnc#718227)\n\n - 'General Error' when double-click graphic in\n presentation (bnc#720948)\n\n - libs-extern-sys\n\n - upgrade graphite to 1.0.3 fix surrogate support\n\n - libs-gui\n\n - crash at exit (bnc#728603)\n\n - radial gradient offset (bnc#714787)\n\n - horizontal scrollbars with KDE oxygen style (bnc#722918)\n\n - rendering of metafiles embedded in EMF+ (updated)\n (bnc#705956)\n\n - postprocess\n\n - make the 3D transitions work again (bnc#728559)\n\n - ure\n\n - make Duden Korrektor 5 and 6 work\n\n - writer\n\n - frame selection (bnc#740117)\n\n - crash when editing index (bnc#726174)\n\n - order database properties (bnc#740032)\n\n - numbering levels in DOC import (bnc#715115)\n\n - image size issue in DOC import (bnc#718971)\n\n - pointless forward moving of a table (bnc#706138)\n\n - tabs set after the end margin in DOCX import\n (bnc#693238)\n\n - add hyperlinks by default in Table of Contents\n (bnc#705956)\n\n - updated to libreoffice-3.4.4.3 (SUSE 3.4.4-rc1 == \nfinal) :\n\n - base\n\n - crash when inserting a constant in a query (fdo#38286)\n\n - calc\n\n - crash when modifying a named range\n\n - speed up range name lookup by index (bnc#715104)\n\n - recalculate matrix formula dimension correctly\n (fdo#39485)\n\n - mark all formula cells dirty when appending a new sheet\n (fdo#35965)\n\n - components\n\n - handling of SAFEARRAY(s) in olebridge (fdo#38441)\n\n - filters\n\n - auto fit text VIEWING too small in PPT import\n (fdo#41245)\n\n - impress\n\n - hang in slideshow (fdo#32861)\n\n - crash while dropping texture (fdo#38391)\n\n - libs-core\n\n - recognize .svg in ODF container (fdo#41995)\n\n - dictionaries lost after LibO upgrade (fdo#37195)\n\n - crash when 'Find Record' button is clicked in Base\n (fdo#40701)\n\n - fix the drawing of dotted and dashed borders in Calc\n (fdo#37129)\n\n - VBA control events not working; broken eventattacher\n (bnc#718227)\n\n - libs-extern-sys\n\n - upgrade graphite to 1.0.3 to fix surrogate support\n\n - libs-gui\n\n - crash when changing screen resolution\n\n - let Qt call XInitThreads() (fdo#40298)\n\n - activation order crashes address database (fdo#41022)\n\n - drawing of dotted and dashed borders in Calc (fdo#37129)\n\n - translations\n\n - update translations\n\n - writer\n\n - leak in PDF export (i#116448)\n\n - crash when editing index (bnc#726174)\n\n - crash while processing incorrect range of pages\n (fdo#35513)\n\n - crash on closing document with footnotes (fdo#39510,\n lp#854626)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://lists.opensuse.org/opensuse-updates/2012-03/msg00052.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://openoffice.org/bugzilla/show_bug.cgi?id=101776\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://openoffice.org/bugzilla/show_bug.cgi?id=116448\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://openoffice.org/bugzilla/show_bug.cgi?id=117010\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=31966\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=32861\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=35513\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=35965\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=37129\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=37195\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=38286\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=38391\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=38441\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=39485\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=39510\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=39657\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=39694\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=40298\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=40320\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=40461\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=40701\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=41022\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=41245\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=41681\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=41995\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=42073\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=42543\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=44816\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=45560\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=46165\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.freedesktop.org/show_bug.cgi?id=46337\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.launchpad.net/bugs/854626\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=417818\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=621739\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=653688\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=655408\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=657909\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=677811\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=685123\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=693238\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=693388\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=695479\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=699334\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=703032\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=704274\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=705949\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=705956\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=705977\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=705985\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=705991\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=706138\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=706792\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=707157\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=714787\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=715094\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=715104\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=715115\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=715543\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=717290\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=718227\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=718694\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=718971\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=719656\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=719887\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=719989\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=720443\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=720948\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=722045\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=722644\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=722918\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=723074\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=724087\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=726152\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=726174\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=727504\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=728559\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=728603\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=733864\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=734734\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=734781\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=735533\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=736495\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=737190\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=737921\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=738113\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=740032\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=740117\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=740453\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=741043\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=741182\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=742178\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=746996\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=747471\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=748198\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=748548\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=667082\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=794679\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://features.opensuse.org/312645\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected libreoffice packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-base-drivers-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-base-drivers-mysql-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-base-drivers-postgresql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-base-drivers-postgresql-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-base-extensions\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-branding-upstream\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-calc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-calc-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-calc-extensions\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-draw\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-draw-extensions\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-draw-extensions-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-filters-optional\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-filters-optional-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-gnome-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-cs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-da\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-de\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-en-GB\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-en-US\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-en-ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-es\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-et\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-fr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-gl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-gu-IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-hi-IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-hu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-it\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-ja\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-km\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-ko\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-nl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-pl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-pt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-pt-BR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-ru\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-sl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-sv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-zh-CN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-zh-TW\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-crystal\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-galaxy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-hicontrast\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-oxygen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-tango\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-icon-themes-prebuilt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-impress\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-impress-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-impress-extensions\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-impress-extensions-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-kde\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-kde-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-kde4\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-kde4-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-af\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-be-BY\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-bg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-br\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ca\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-cs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-cy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-da\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-de\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-el\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-en-GB\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-en-ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-es\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-et\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-fi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-fr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ga\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-gl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-gu-IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-he\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-hi-IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-hr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-hu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-it\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ja\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ka\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-km\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ko\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-lt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-nb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-nl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-nn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-nr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-pa-IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-pl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-prebuilt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-pt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-pt-BR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ru\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-rw\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-sh\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-sk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-sl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-sr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ss\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-st\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-sv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-tg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-th\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-tr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-uk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ve\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-vi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-xh\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-zh-CN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-zh-TW\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-zu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-mailmerge\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-math\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-math-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-officebean\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-officebean-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-pyuno\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-pyuno-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-sdk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-sdk-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-testtool\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-testtool-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-writer\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-writer-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-writer-extensions\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:11.4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/03/29\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE11\\.4)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"11.4\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-base-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-base-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-base-drivers-mysql-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-base-drivers-mysql-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-base-drivers-postgresql-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-base-drivers-postgresql-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-base-extensions-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-branding-upstream-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-calc-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-calc-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-calc-extensions-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-debugsource-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-draw-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-draw-extensions-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-draw-extensions-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-filters-optional-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-filters-optional-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-gnome-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-gnome-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-cs-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-da-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-de-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-en-GB-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-en-US-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-en-ZA-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-es-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-et-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-fr-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-gl-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-gu-IN-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-hi-IN-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-hu-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-it-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-ja-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-km-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-ko-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-nl-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-pl-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-pt-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-pt-BR-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-ru-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-sl-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-sv-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-zh-CN-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-help-zh-TW-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-icon-theme-crystal-3.4.5.5-14.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-icon-theme-galaxy-3.4.5.5-14.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-icon-theme-hicontrast-3.4.5.5-14.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-icon-theme-oxygen-3.4.5.5-14.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-icon-theme-tango-3.4.5.5-14.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-icon-themes-prebuilt-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-impress-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-impress-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-impress-extensions-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-impress-extensions-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-kde-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-kde-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-kde4-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-kde4-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-af-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-ar-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-be-BY-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-bg-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-br-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-ca-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-cs-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-cy-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-da-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-de-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-el-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-en-GB-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-en-ZA-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-es-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-et-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-fi-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-fr-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-ga-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-gl-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-gu-IN-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-he-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-hi-IN-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-hr-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-hu-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-it-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-ja-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-ka-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-km-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-ko-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-lt-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-mk-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-nb-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-nl-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-nn-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-nr-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-pa-IN-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-pl-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-prebuilt-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-pt-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-pt-BR-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-ru-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-rw-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-sh-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-sk-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-sl-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-sr-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-ss-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-st-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-sv-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-tg-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-th-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-tr-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-ts-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-uk-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-ve-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-vi-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-xh-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-zh-CN-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-zh-TW-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-l10n-zu-3.4.5.5-122.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-mailmerge-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-math-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-math-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-officebean-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-officebean-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-pyuno-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-pyuno-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-sdk-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-sdk-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-testtool-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-testtool-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-writer-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-writer-debuginfo-3.4.5.5-97.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.4\", reference:\"libreoffice-writer-extensions-3.4.5.5-97.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libreoffice-branding-upstream / libreoffice-help-en-US / etc\");\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-02T00:00:35", "references": ["http://www.libreoffice.org/advisories/CVE-2012-0037/"], "pluginID": "61950", "description": "An XML External Entity expansion flaw was found in the way Raptor processed RDF files. If an application linked against Raptor were to open a specially crafted RDF file, it could possibly allow a remote attacker to obtain a copy of an arbitrary local file that the user running the application had access to. A bug in the way Raptor handled external entities could cause that application to crash or, possibly, execute arbitrary code with the privileges of the user running the application (CVE-2012-0037).\n\nlibreoffice for Mandriva Linux 2011 has been upgraded to the 3.4.6 version which is not vulnerable to this issue.", "edition": 5, "reporter": "Tenable", "published": "2012-09-06T00:00:00", "title": "Mandriva Linux Security Advisory : libreoffice (MDVSA-2012:063)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "Mandriva Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2018-07-19T00:00:00", "cpe": ["p-cpe:/a:mandriva:linux:libreoffice-presentation-minimizer", "p-cpe:/a:mandriva:linux:libreoffice-pyuno", "p-cpe:/a:mandriva:linux:libreoffice-base", "p-cpe:/a:mandriva:linux:libreoffice-l10n-ts", "p-cpe:/a:mandriva:linux:libreoffice-l10n-af", "p-cpe:/a:mandriva:linux:libreoffice-l10n-et", "p-cpe:/a:mandriva:linux:libreoffice-help-en_US", "cpe:/o:mandriva:linux:2011", "p-cpe:/a:mandriva:linux:libreoffice-help-ja", "p-cpe:/a:mandriva:linux:libreoffice-help-sl", "p-cpe:/a:mandriva:linux:libreoffice-l10n-sk", "p-cpe:/a:mandriva:linux:libreoffice-l10n-br", "p-cpe:/a:mandriva:linux:libreoffice-l10n-ru", "p-cpe:/a:mandriva:linux:libreoffice-l10n-or", "p-cpe:/a:mandriva:linux:libreoffice-help-fr", "p-cpe:/a:mandriva:linux:libreoffice-l10n-gu", "p-cpe:/a:mandriva:linux:libreoffice-l10n-mr", "p-cpe:/a:mandriva:linux:libreoffice-l10n-zh_CN", "p-cpe:/a:mandriva:linux:libreoffice-l10n-bg", "p-cpe:/a:mandriva:linux:libreoffice-l10n-gl", "p-cpe:/a:mandriva:linux:libreoffice-help-tr", "p-cpe:/a:mandriva:linux:libreoffice-l10n-ca", "p-cpe:/a:mandriva:linux:libreoffice-help-fi", "p-cpe:/a:mandriva:linux:libreoffice-l10n-hi", "p-cpe:/a:mandriva:linux:libreoffice-l10n-sh", "p-cpe:/a:mandriva:linux:libreoffice-help-dz", "p-cpe:/a:mandriva:linux:libreoffice-help-el", "p-cpe:/a:mandriva:linux:libreoffice-l10n-es", "p-cpe:/a:mandriva:linux:libreoffice-style-crystal", "p-cpe:/a:mandriva:linux:libreoffice-help-bs", "p-cpe:/a:mandriva:linux:libreoffice-help-he", "p-cpe:/a:mandriva:linux:libreoffice-l10n-as", "p-cpe:/a:mandriva:linux:libreoffice-l10n-nn", "p-cpe:/a:mandriva:linux:libreoffice-l10n-pa_IN", "p-cpe:/a:mandriva:linux:libreoffice-help-si", "p-cpe:/a:mandriva:linux:libreoffice-l10n-kn", "p-cpe:/a:mandriva:linux:libreoffice-testtool", "p-cpe:/a:mandriva:linux:libreoffice-help-es", "p-cpe:/a:mandriva:linux:libreoffice-help-sk", "p-cpe:/a:mandriva:linux:libreoffice-help-ru", "p-cpe:/a:mandriva:linux:libreoffice-l10n-da", "p-cpe:/a:mandriva:linux:libreoffice-l10n-nb", "p-cpe:/a:mandriva:linux:libreoffice-help-bg", "p-cpe:/a:mandriva:linux:libreoffice-l10n-nso", "p-cpe:/a:mandriva:linux:libreoffice-l10n-mk", "p-cpe:/a:mandriva:linux:libreoffice-wiki-publisher", "p-cpe:/a:mandriva:linux:libreoffice-help-nb", "p-cpe:/a:mandriva:linux:libreoffice-help-mk", "p-cpe:/a:mandriva:linux:libreoffice-devel-doc", "p-cpe:/a:mandriva:linux:libreoffice-l10n-uk", "p-cpe:/a:mandriva:linux:libreoffice-l10n-hr", "p-cpe:/a:mandriva:linux:libreoffice-l10n-ml", "p-cpe:/a:mandriva:linux:libreoffice-help-uk", "p-cpe:/a:mandriva:linux:libreoffice-l10n-eu", "p-cpe:/a:mandriva:linux:libreoffice-l10n-ar", "p-cpe:/a:mandriva:linux:libreoffice-l10n-xh", "p-cpe:/a:mandriva:linux:libreoffice-help-nl", "p-cpe:/a:mandriva:linux:libreoffice-l10n-tr", "p-cpe:/a:mandriva:linux:libreoffice-help-gl", "p-cpe:/a:mandriva:linux:libreoffice-impress", "p-cpe:/a:mandriva:linux:libreoffice-common", "p-cpe:/a:mandriva:linux:libreoffice-l10n-sv", "p-cpe:/a:mandriva:linux:libreoffice-style-tango", "p-cpe:/a:mandriva:linux:libreoffice-style-galaxy", "p-cpe:/a:mandriva:linux:libreoffice-l10n-ga", "p-cpe:/a:mandriva:linux:libreoffice-l10n-sr", "p-cpe:/a:mandriva:linux:libreoffice-l10n-te", "p-cpe:/a:mandriva:linux:libreoffice-devel", "p-cpe:/a:mandriva:linux:libreoffice-openclipart", "p-cpe:/a:mandriva:linux:libreoffice-l10n-th", "p-cpe:/a:mandriva:linux:libreoffice-l10n-it", "p-cpe:/a:mandriva:linux:libreoffice-l10n-hu", "p-cpe:/a:mandriva:linux:libreoffice-calc", "p-cpe:/a:mandriva:linux:libreoffice-help-bn", "p-cpe:/a:mandriva:linux:libreoffice-help-it", "p-cpe:/a:mandriva:linux:libreoffice-l10n-pt", "p-cpe:/a:mandriva:linux:libreoffice-filter-binfilter", "p-cpe:/a:mandriva:linux:libreoffice-help-da", "p-cpe:/a:mandriva:linux:libreoffice-draw", "p-cpe:/a:mandriva:linux:libreoffice-help-nn", "p-cpe:/a:mandriva:linux:libreoffice-l10n-fr", "p-cpe:/a:mandriva:linux:libreoffice", "p-cpe:/a:mandriva:linux:libreoffice-pdfimport", "p-cpe:/a:mandriva:linux:libreoffice-l10n-pl", "p-cpe:/a:mandriva:linux:libreoffice-help-pt", "p-cpe:/a:mandriva:linux:libreoffice-help-hu", "p-cpe:/a:mandriva:linux:libreoffice-l10n-fa", "p-cpe:/a:mandriva:linux:libreoffice-l10n-cy", "p-cpe:/a:mandriva:linux:libreoffice-l10n-ss", "p-cpe:/a:mandriva:linux:libreoffice-java-common", "p-cpe:/a:mandriva:linux:libreoffice-l10n-dz", "p-cpe:/a:mandriva:linux:libreoffice-l10n-en_GB", "p-cpe:/a:mandriva:linux:libreoffice-help-zh_CN", "p-cpe:/a:mandriva:linux:libreoffice-l10n-pt_BR", "p-cpe:/a:mandriva:linux:libreoffice-l10n-mai", "p-cpe:/a:mandriva:linux:libreoffice-l10n-ve", "p-cpe:/a:mandriva:linux:libreoffice-l10n-ta", "p-cpe:/a:mandriva:linux:libreoffice-l10n-ko", "p-cpe:/a:mandriva:linux:libreoffice-l10n-cs", "p-cpe:/a:mandriva:linux:libreoffice-help-hr", "p-cpe:/a:mandriva:linux:libreoffice-l10n-nl", "p-cpe:/a:mandriva:linux:libreoffice-l10n-si", "p-cpe:/a:mandriva:linux:libreoffice-help-pt_BR", "p-cpe:/a:mandriva:linux:libreoffice-l10n-de", "p-cpe:/a:mandriva:linux:libreoffice-writer", "p-cpe:/a:mandriva:linux:libreoffice-l10n-lt", "p-cpe:/a:mandriva:linux:libreoffice-l10n-nr", "p-cpe:/a:mandriva:linux:libreoffice-l10n-fi", "p-cpe:/a:mandriva:linux:libreoffice-l10n-zu", "p-cpe:/a:mandriva:linux:libreoffice-help-zh_TW", "p-cpe:/a:mandriva:linux:libreoffice-l10n-sl", "p-cpe:/a:mandriva:linux:libreoffice-l10n-zh_TW", "p-cpe:/a:mandriva:linux:libreoffice-math", "p-cpe:/a:mandriva:linux:libreoffice-l10n-bn", "p-cpe:/a:mandriva:linux:libreoffice-l10n-he", "p-cpe:/a:mandriva:linux:libreoffice-kde4", "p-cpe:/a:mandriva:linux:libreoffice-style-oxygen", "p-cpe:/a:mandriva:linux:libreoffice-l10n-lv", "p-cpe:/a:mandriva:linux:libreoffice-help-en_GB", "p-cpe:/a:mandriva:linux:libreoffice-presenter-screen", "p-cpe:/a:mandriva:linux:libreoffice-l10n-tn", "p-cpe:/a:mandriva:linux:libreoffice-help-eu", "p-cpe:/a:mandriva:linux:libreoffice-l10n-ro", "p-cpe:/a:mandriva:linux:libreoffice-help-ko", "p-cpe:/a:mandriva:linux:libreoffice-help-pl", "p-cpe:/a:mandriva:linux:libreoffice-gnome", "p-cpe:/a:mandriva:linux:libreoffice-core", "p-cpe:/a:mandriva:linux:libreoffice-help-sv", "p-cpe:/a:mandriva:linux:libreoffice-help-gu", "p-cpe:/a:mandriva:linux:libreoffice-l10n-ja", "p-cpe:/a:mandriva:linux:libreoffice-help-de", "p-cpe:/a:mandriva:linux:libreoffice-l10n-el", "p-cpe:/a:mandriva:linux:libreoffice-help-ca", "p-cpe:/a:mandriva:linux:libreoffice-l10n-st", "p-cpe:/a:mandriva:linux:libreoffice-l10n-bs", "p-cpe:/a:mandriva:linux:libreoffice-help-hi", "p-cpe:/a:mandriva:linux:libreoffice-help-cs", "p-cpe:/a:mandriva:linux:libreoffice-style-hicontrast", "p-cpe:/a:mandriva:linux:libreoffice-help-et"], "id": "MANDRIVA_MDVSA-2012-063.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=61950", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandriva Linux Security Advisory MDVSA-2012:063. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61950);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/07/19 20:59:17\");\n\n script_cve_id(\"CVE-2012-0037\");\n script_xref(name:\"MDVSA\", value:\"2012:063\");\n\n script_name(english:\"Mandriva Linux Security Advisory : libreoffice (MDVSA-2012:063)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandriva Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"An XML External Entity expansion flaw was found in the way Raptor\nprocessed RDF files. If an application linked against Raptor were to\nopen a specially crafted RDF file, it could possibly allow a remote\nattacker to obtain a copy of an arbitrary local file that the user\nrunning the application had access to. A bug in the way Raptor handled\nexternal entities could cause that application to crash or, possibly,\nexecute arbitrary code with the privileges of the user running the\napplication (CVE-2012-0037).\n\nlibreoffice for Mandriva Linux 2011 has been upgraded to the 3.4.6\nversion which is not vulnerable to this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.libreoffice.org/advisories/CVE-2012-0037/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-calc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-core\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-devel-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-draw\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-filter-binfilter\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-bg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-bn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-bs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-ca\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-cs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-da\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-de\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-dz\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-el\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-en_GB\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-en_US\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-es\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-et\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-eu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-fi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-fr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-gl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-gu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-he\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-hi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-hr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-hu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-it\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-ja\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-ko\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-nb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-nl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-nn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-pl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-pt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-pt_BR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-ru\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-si\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-sk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-sl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-sv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-tr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-uk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-zh_CN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-help-zh_TW\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-impress\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-java-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-kde4\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-af\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-ar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-as\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-bg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-bn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-br\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-bs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-ca\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-cs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-cy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-da\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-de\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-dz\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-el\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-en_GB\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-es\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-et\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-eu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-fa\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-fi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-fr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-ga\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-gl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-gu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-he\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-hi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-hr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-hu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-it\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-ja\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-kn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-ko\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-lt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-lv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-mai\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-ml\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-mr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-nb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-nl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-nn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-nr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-nso\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-or\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-pa_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-pl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-pt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-pt_BR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-ro\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-ru\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-sh\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-si\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-sk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-sl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-sr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-ss\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-st\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-sv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-ta\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-te\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-th\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-tn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-tr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-ts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-uk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-ve\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-xh\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-zh_CN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-zh_TW\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-l10n-zu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-math\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-openclipart\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-pdfimport\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-presentation-minimizer\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-presenter-screen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-pyuno\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-style-crystal\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-style-galaxy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-style-hicontrast\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-style-oxygen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-style-tango\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-testtool\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-wiki-publisher\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libreoffice-writer\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2011\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/04/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/09/06\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-base-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-calc-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-common-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-core-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-devel-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-devel-doc-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-draw-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-filter-binfilter-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-gnome-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-bg-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-bn-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-bs-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-ca-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-cs-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-da-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-de-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-dz-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-el-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-en_GB-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-en_US-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-es-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-et-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-eu-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-fi-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-fr-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-gl-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-gu-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-he-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-hi-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-hr-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-hu-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-it-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-ja-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-ko-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-mk-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-nb-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-nl-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-nn-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-pl-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-pt-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-pt_BR-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-ru-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-si-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-sk-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-sl-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-sv-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-tr-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-uk-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-zh_CN-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-help-zh_TW-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-impress-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-java-common-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-kde4-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-af-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-ar-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-as-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-bg-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-bn-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-br-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-bs-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-ca-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-cs-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-cy-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-da-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-de-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-dz-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-el-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-en_GB-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-es-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-et-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-eu-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-fa-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-fi-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-fr-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-ga-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-gl-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-gu-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-he-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-hi-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-hr-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-hu-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-it-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-ja-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-kn-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-ko-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-lt-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-lv-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-mai-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-mk-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-ml-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-mr-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-nb-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-nl-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-nn-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-nr-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-nso-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-or-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-pa_IN-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-pl-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-pt-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-pt_BR-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-ro-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-ru-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-sh-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-si-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-sk-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-sl-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-sr-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-ss-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-st-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-sv-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-ta-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-te-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-th-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-tn-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-tr-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-ts-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-uk-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-ve-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-xh-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-zh_CN-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-zh_TW-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-l10n-zu-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-math-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-openclipart-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-pdfimport-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-presentation-minimizer-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-presenter-screen-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-pyuno-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-style-crystal-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-style-galaxy-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-style-hicontrast-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-style-oxygen-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-style-tango-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-testtool-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-wiki-publisher-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"libreoffice-writer-3.4.6-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-01T23:33:45", "references": ["http://www.libreoffice.org/advisories/CVE-2012-0037/"], "pluginID": "58830", "description": "An XML External Entity expansion flaw was found in the way Raptor processed RDF files. If an application linked against Raptor were to open a specially crafted RDF file, it could possibly allow a remote attacker to obtain a copy of an arbitrary local file that the user running the application had access to. A bug in the way Raptor handled external entities could cause that application to crash or, possibly, execute arbitrary code with the privileges of the user running the application (CVE-2012-0037).\n\nThe updated packages have been patched to correct this issue.\n\nraptor2 for Mandriva Linux 2011 has been upgraded to the 2.0.7 version which is not vulnerable to this issue.", "edition": 5, "reporter": "Tenable", "published": "2012-04-23T00:00:00", "title": "Mandriva Linux Security Advisory : raptor (MDVSA-2012:061)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Mandriva Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2018-07-19T00:00:00", "cpe": ["p-cpe:/a:mandriva:linux:lib64raptor2-devel", "cpe:/o:mandriva:linux:2011", "p-cpe:/a:mandriva:linux:libraptor-devel", "p-cpe:/a:mandriva:linux:raptor2", "p-cpe:/a:mandriva:linux:libraptor2-devel", "p-cpe:/a:mandriva:linux:libraptor1", "p-cpe:/a:mandriva:linux:lib64raptor1", "p-cpe:/a:mandriva:linux:raptor", "cpe:/o:mandriva:linux:2010.1", "p-cpe:/a:mandriva:linux:libraptor2_0", "p-cpe:/a:mandriva:linux:lib64raptor2_0", "p-cpe:/a:mandriva:linux:lib64raptor-devel"], "id": "MANDRIVA_MDVSA-2012-061.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=58830", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandriva Linux Security Advisory MDVSA-2012:061. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(58830);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2018/07/19 20:59:17\");\n\n script_cve_id(\"CVE-2012-0037\");\n script_xref(name:\"MDVSA\", value:\"2012:061\");\n\n script_name(english:\"Mandriva Linux Security Advisory : raptor (MDVSA-2012:061)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandriva Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"An XML External Entity expansion flaw was found in the way Raptor\nprocessed RDF files. If an application linked against Raptor were to\nopen a specially crafted RDF file, it could possibly allow a remote\nattacker to obtain a copy of an arbitrary local file that the user\nrunning the application had access to. A bug in the way Raptor handled\nexternal entities could cause that application to crash or, possibly,\nexecute arbitrary code with the privileges of the user running the\napplication (CVE-2012-0037).\n\nThe updated packages have been patched to correct this issue.\n\nraptor2 for Mandriva Linux 2011 has been upgraded to the 2.0.7 version\nwhich is not vulnerable to this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.libreoffice.org/advisories/CVE-2012-0037/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64raptor-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64raptor1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64raptor2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64raptor2_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libraptor-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libraptor1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libraptor2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libraptor2_0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:raptor\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:raptor2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2010.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2011\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/04/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/04/23\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK2010.1\", cpu:\"x86_64\", reference:\"lib64raptor-devel-1.4.21-5.1mdv2010.2\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2010.1\", cpu:\"x86_64\", reference:\"lib64raptor1-1.4.21-5.1mdv2010.2\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2010.1\", cpu:\"i386\", reference:\"libraptor-devel-1.4.21-5.1mdv2010.2\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2010.1\", cpu:\"i386\", reference:\"libraptor1-1.4.21-5.1mdv2010.2\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2010.1\", reference:\"raptor-1.4.21-5.1mdv2010.2\", yank:\"mdv\")) flag++;\n\nif (rpm_check(release:\"MDK2011\", cpu:\"x86_64\", reference:\"lib64raptor-devel-1.4.21-5.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", cpu:\"x86_64\", reference:\"lib64raptor1-1.4.21-5.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", cpu:\"x86_64\", reference:\"lib64raptor2-devel-2.0.7-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", cpu:\"x86_64\", reference:\"lib64raptor2_0-2.0.7-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", cpu:\"i386\", reference:\"libraptor-devel-1.4.21-5.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", cpu:\"i386\", reference:\"libraptor1-1.4.21-5.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", cpu:\"i386\", reference:\"libraptor2-devel-2.0.7-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", cpu:\"i386\", reference:\"libraptor2_0-2.0.7-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"raptor-1.4.21-5.1-mdv2011.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2011\", reference:\"raptor2-2.0.7-0.1-mdv2011.0\", yank:\"mdv\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-01T23:56:27", "references": ["http://www.nessus.org/u?e8b9f74c"], "pluginID": "61287", "description": "OpenOffice.org is an office productivity suite that includes desktop applications, such as a word processor, spreadsheet application, presentation manager, formula editor, and a drawing program.\nOpenOffice.org embeds a copy of Raptor, which provides parsers for Resource Description Framework (RDF) files.\n\nAn XML External Entity expansion flaw was found in the way Raptor processed RDF files. If OpenOffice.org were to open a specially crafted file (such as an OpenDocument Format or OpenDocument Presentation file), it could possibly allow a remote attacker to obtain a copy of an arbitrary local file that the user running OpenOffice.org had access to. A bug in the way Raptor handled external entities could cause OpenOffice.org to crash or, possibly, execute arbitrary code with the privileges of the user running OpenOffice.org.\n(CVE-2012-0037)\n\nAll OpenOffice.org users are advised to upgrade to these updated packages, which contain backported patches to correct this issue. All running instances of OpenOffice.org applications must be restarted for this update to take effect.", "edition": 4, "reporter": "Tenable", "published": "2012-08-01T00:00:00", "title": "Scientific Linux Security Update : openoffice.org on SL5.x i386/x86_64", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "Scientific Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2014-08-16T00:00:00", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "id": "SL_20120322_OPENOFFICE_ORG_ON_SL5_X.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=61287", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61287);\n script_version(\"$Revision: 1.3 $\");\n script_cvs_date(\"$Date: 2014/08/16 19:47:27 $\");\n\n script_cve_id(\"CVE-2012-0037\");\n\n script_name(english:\"Scientific Linux Security Update : openoffice.org on SL5.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"OpenOffice.org is an office productivity suite that includes desktop\napplications, such as a word processor, spreadsheet application,\npresentation manager, formula editor, and a drawing program.\nOpenOffice.org embeds a copy of Raptor, which provides parsers for\nResource Description Framework (RDF) files.\n\nAn XML External Entity expansion flaw was found in the way Raptor\nprocessed RDF files. If OpenOffice.org were to open a specially\ncrafted file (such as an OpenDocument Format or OpenDocument\nPresentation file), it could possibly allow a remote attacker to\nobtain a copy of an arbitrary local file that the user running\nOpenOffice.org had access to. A bug in the way Raptor handled external\nentities could cause OpenOffice.org to crash or, possibly, execute\narbitrary code with the privileges of the user running OpenOffice.org.\n(CVE-2012-0037)\n\nAll OpenOffice.org users are advised to upgrade to these updated\npackages, which contain backported patches to correct this issue. All\nrunning instances of OpenOffice.org applications must be restarted for\nthis update to take effect.\"\n );\n # http://listserv.fnal.gov/scripts/wa.exe?A2=ind1203&L=scientific-linux-errata&T=0&P=4437\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e8b9f74c\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/03/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2014 Tenable Network Security, Inc.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-base-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-calc-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-core-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-debuginfo-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-draw-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-emailmerge-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-graphicfilter-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-headless-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-impress-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-javafilter-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-af_ZA-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ar-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-as_IN-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-bg_BG-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-bn-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ca_ES-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-cs_CZ-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-cy_GB-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-da_DK-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-de-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-el_GR-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-es-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-et_EE-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-eu_ES-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-fi_FI-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-fr-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ga_IE-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-gl_ES-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-gu_IN-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-he_IL-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-hi_IN-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-hr_HR-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-hu_HU-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-it-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ja_JP-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-kn_IN-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ko_KR-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-lt_LT-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ml_IN-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-mr_IN-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ms_MY-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-nb_NO-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-nl-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-nn_NO-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-nr_ZA-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-nso_ZA-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-or_IN-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-pa_IN-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-pl_PL-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-pt_BR-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-pt_PT-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ru-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-sk_SK-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-sl_SI-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-sr_CS-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ss_ZA-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-st_ZA-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-sv-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ta_IN-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-te_IN-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-th_TH-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-tn_ZA-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-tr_TR-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ts_ZA-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ur-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ve_ZA-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-xh_ZA-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-zh_CN-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-zh_TW-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-zu_ZA-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-math-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-pyuno-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-sdk-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-sdk-doc-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-testtools-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-ure-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-writer-3.1.1-19.10.el5_8.1\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-xsltfilter-3.1.1-19.10.el5_8.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-01T23:59:48", "references": ["https://packages.debian.org/source/squeeze/raptor", "http://www.debian.org/security/2012/dsa-2438"], "pluginID": "58436", "description": "It was discovered that Raptor, a RDF parser and serializer library, allows file inclusion through XML entities, resulting in information disclosure.", "edition": 5, "reporter": "Tenable", "published": "2012-03-23T00:00:00", "title": "Debian DSA-2438-1 : raptor - programming error", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2018-07-09T00:00:00", "cpe": ["cpe:/o:debian:debian_linux:6.0", "p-cpe:/a:debian:debian_linux:raptor"], "id": "DEBIAN_DSA-2438.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=58436", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-2438. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(58436);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2018/07/09 14:30:25\");\n\n script_cve_id(\"CVE-2012-0037\");\n script_bugtraq_id(52681);\n script_xref(name:\"DSA\", value:\"2438\");\n\n script_name(english:\"Debian DSA-2438-1 : raptor - programming error\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that Raptor, a RDF parser and serializer library,\nallows file inclusion through XML entities, resulting in information\ndisclosure.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/squeeze/raptor\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2012/dsa-2438\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the raptor packages.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1.4.21-2+squeeze1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:raptor\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:6.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/03/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/03/23\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"6.0\", prefix:\"libraptor1\", reference:\"1.4.21-2+squeeze1\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"libraptor1-dbg\", reference:\"1.4.21-2+squeeze1\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"libraptor1-dev\", reference:\"1.4.21-2+squeeze1\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"libraptor1-doc\", reference:\"1.4.21-2+squeeze1\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"raptor-utils\", reference:\"1.4.21-2+squeeze1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-02T00:04:44", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=805941", "http://www.nessus.org/u?870200fd"], "pluginID": "60157", "description": "This is new version of package that fixes CVE-2012-0037.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "reporter": "Tenable", "published": "2012-07-31T00:00:00", "title": "Fedora 16 : raptor-1.4.21-12.fc16 (2012-10590)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2015-10-20T00:00:00", "cpe": ["p-cpe:/a:fedoraproject:fedora:raptor", "cpe:/o:fedoraproject:fedora:16"], "id": "FEDORA_2012-10590.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=60157", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2012-10590.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(60157);\n script_version(\"$Revision: 1.9 $\");\n script_cvs_date(\"$Date: 2015/10/20 22:25:10 $\");\n\n script_cve_id(\"CVE-2012-0037\");\n script_bugtraq_id(52681);\n script_xref(name:\"FEDORA\", value:\"2012-10590\");\n\n script_name(english:\"Fedora 16 : raptor-1.4.21-12.fc16 (2012-10590)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This is new version of package that fixes CVE-2012-0037.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=805941\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2012-July/084486.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?870200fd\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected raptor package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:raptor\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:16\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/07/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/07/31\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^16([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 16.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC16\", reference:\"raptor-1.4.21-12.fc16\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"raptor\");\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-02T00:04:29", "references": ["https://bugzilla.novell.com/show_bug.cgi?id=714787", "https://bugzilla.novell.com/show_bug.cgi?id=703032", "https://bugzilla.novell.com/show_bug.cgi?id=722045", "https://bugzilla.novell.com/show_bug.cgi?id=719989", "https://bugzilla.novell.com/show_bug.cgi?id=715094", "https://bugzilla.novell.com/show_bug.cgi?id=740453", "https://bugzilla.novell.com/show_bug.cgi?id=706792", "https://bugzilla.novell.com/show_bug.cgi?id=746996", "https://bugzilla.novell.com/show_bug.cgi?id=741043", "https://bugzilla.novell.com/show_bug.cgi?id=693388", "https://bugzilla.novell.com/show_bug.cgi?id=705949", "https://bugzilla.novell.com/show_bug.cgi?id=726174", "https://bugzilla.novell.com/show_bug.cgi?id=748198", "https://bugzilla.novell.com/show_bug.cgi?id=720443", "https://bugzilla.novell.com/show_bug.cgi?id=718227", "https://bugzilla.novell.com/show_bug.cgi?id=722918", "https://bugzilla.novell.com/show_bug.cgi?id=715115", "https://bugzilla.novell.com/show_bug.cgi?id=748548", "https://bugzilla.novell.com/show_bug.cgi?id=705991", "https://bugzilla.novell.com/show_bug.cgi?id=707157", "https://bugzilla.novell.com/show_bug.cgi?id=705977", "https://bugzilla.novell.com/show_bug.cgi?id=734781", "https://bugzilla.novell.com/show_bug.cgi?id=657909", "https://bugzilla.novell.com/show_bug.cgi?id=728603", "https://bugzilla.novell.com/show_bug.cgi?id=718971", "https://bugzilla.novell.com/show_bug.cgi?id=733864", "https://bugzilla.novell.com/show_bug.cgi?id=741182", "https://bugzilla.novell.com/show_bug.cgi?id=655408", "https://bugzilla.novell.com/show_bug.cgi?id=740117", "https://bugzilla.novell.com/show_bug.cgi?id=706138", "https://bugzilla.novell.com/show_bug.cgi?id=726152", "http://lists.opensuse.org/opensuse-updates/2012-03/msg00049.html", "https://bugzilla.novell.com/show_bug.cgi?id=621739", "https://bugzilla.novell.com/show_bug.cgi?id=699334", "https://bugzilla.novell.com/show_bug.cgi?id=737190", "https://bugzilla.novell.com/show_bug.cgi?id=685123", "https://bugzilla.novell.com/show_bug.cgi?id=715543", "https://bugzilla.novell.com/show_bug.cgi?id=677811", "https://bugzilla.novell.com/show_bug.cgi?id=737921", "https://bugzilla.novell.com/show_bug.cgi?id=705985", "https://bugzilla.novell.com/show_bug.cgi?id=728559", "https://bugzilla.novell.com/show_bug.cgi?id=722644", "https://bugzilla.novell.com/show_bug.cgi?id=717290", "https://bugzilla.novell.com/show_bug.cgi?id=720948", "https://bugzilla.novell.com/show_bug.cgi?id=747471", "https://bugzilla.novell.com/show_bug.cgi?id=695479", "https://bugzilla.novell.com/show_bug.cgi?id=734734", "https://bugzilla.novell.com/show_bug.cgi?id=417818", "https://bugzilla.novell.com/show_bug.cgi?id=740032", "https://bugzilla.novell.com/show_bug.cgi?id=719887", "https://bugzilla.novell.com/show_bug.cgi?id=724087", "https://bugzilla.novell.com/show_bug.cgi?id=693238", "https://bugzilla.novell.com/show_bug.cgi?id=715104", "https://bugzilla.novell.com/show_bug.cgi?id=727504", "https://bugzilla.novell.com/show_bug.cgi?id=736495", "https://bugzilla.novell.com/show_bug.cgi?id=742178", "https://bugzilla.novell.com/show_bug.cgi?id=705956", "https://bugzilla.novell.com/show_bug.cgi?id=738113", "https://bugzilla.novell.com/show_bug.cgi?id=735533", "https://bugzilla.novell.com/show_bug.cgi?id=704274", "https://bugzilla.novell.com/show_bug.cgi?id=653688"], "pluginID": "74581", "description": "- updated to libreoffice-3.4.5.5 (SUSE 3.4.5-rc3) :\n\n - extras\n\n - add SUSE color palette (fate#312645)\n\n - filters\n\n - crash when loading embedded elements (bnc#693238)\n\n - crash when importing an empty paragraph (rh#667082)\n\n - writer\n\n - do not use an invalidated iterator (fdo#46337)\n\n - updated to libreoffice-3.4.5.4 (SUSE 3.4.5-rc2)\n\n - calc\n\n - pie charts colors messed in XLS import (fdo#40320)\n\n - correctly import data point formats in data series (fdo#40320)\n\n - components\n\n - crash when parsing XML signatures (fdo#39657)\n\n - broken getDataArray (fdo#46165, fdo#38441, i#117010)\n\n - don't paint a frame around the list of edit boxes (fdo#42543)\n\n - inconsistent compression method for encrypted documents (bnc#653688)\n\n - filters\n\n - more on bentConnectors (bnc#736495)\n\n - wrong text color in smartArt (bnc#746996)\n\n - reading of w:textbox contents (bnc#693388)\n\n - textbox position and size DOCX import (fdo#45560)\n\n - RTF/DOCX import of transparent frames (bnc#695479)\n\n - consecutive frames in RTF/DOCX import (bnc#703032)\n\n - handling of frame properties in RTF import (bnc#417818)\n\n - force imported XLSX active tab to be shown (bnc#748198)\n\n - create TableManager for inside shapes (bnc#747471, bnc#693238)\n\n - textboxes import with OLE objects inside (bnc#747471, bnc#693238)\n\n - impress\n\n - do not create an empty slide when printing handouts (fdo#31966)\n\n - libs-core\n\n - default shortcut for .uno:SearchDialog should be Ctrl+H\n\n - crash using instances dialog of dataform navigator (fdo#44816)\n\n - libs-extern\n\n - disable problematic reading of external entities in raptor\n\n - libs-gui\n\n - correctly calculate leap year\n\n - use proper Indian Rupee currency symbol U+20B9 (rh#794679)\n\n - writer\n\n - field refreshing (fdo#39694)\n\n - more layout crashers (i#101776, fdo#39510)\n\n - textbox borders style and width in DOCX import (fdo#45560)\n\n - expand all text fields when setting properties (fdo#42073)\n\n - updated to libreoffice-3.4.5.3 (SUSE 3.4.5-rc1)\n\n - version 3.4.5.3, tag suse-3.4.5.3 (SUSE LO 3.4.5-rc1)\n\n - SmartArt import\n\n - custom shapes import\n\n - Oracle Java 1.7.0 detection\n\n - reading AES-encrypted ODF 1.2 documents as generated by LO 3.5\n\n - base\n\n - iterator misuse (fdo #44040, bnc#742178)\n\n - calc\n\n - allow pasting to multiple ranges (bnc#715094)\n\n - correctly convert chart data ranges (bnc#727504)\n\n - definedName corruption for XLSX export (bnc#741182)\n\n - adjust/shrink the ranges while copying (bnc#677811)\n\n - extra graph data is displayed for label (bnc#717290)\n\n - getCellRangeByName failure for named range (bnc#738113)\n\n - graph in XLS file has dates displayed wrong (bnc#720443)\n\n - improve performance of large Excel documents (bnc#715104)\n\n - display page background color/image properly (bnc#722045)\n\n - pivot table output becoming empty on re-save (bnc#715543)\n\n - encode virtual paths to local volume correctly (bnc#719887)\n\n - avoid adjusting cell-anchored objects on other sheets (bnc#726152)\n\n - make sure to adjust the sheet index of drawing objects (bnc#733864)\n\n - make the data validation popup more reliable (fdo #36851, bnc#737190)\n\n - filters\n\n - table style (bnc#705991)\n\n - text rotation fixes (bnc#734734)\n\n - crash in PPTX import (bnc#706792)\n\n - read w:sdt* contents (bnc#705949)\n\n - connector shape fixes (bnc#719989)\n\n - legacy fragment import (bnc#699334)\n\n - non-working Excel macros (bnc#705977)\n\n - free drawn curves import (bnc#657909)\n\n - group shape transformations (bnc#621739)\n\n - extLst of drawings in diagrams import (bnc#655408)\n\n - flip properties of custom shapes import (bnc#705985)\n\n - line spacing is used from previous values (bnc#734734)\n\n - missing ooxml customshape->mso shape name entries (bnc#737921)\n\n - word doesn't break the numberings and prefers hiding them (bnc#707157)\n\n - impress\n\n - undo corruption (bnc#685123)\n\n - do not set duplicate master slide names (bnc#735533)\n\n - libs-core\n\n - handle copy and paste from ConsoleOne (bnc#704274)\n\n - VBA control events not working, broken eventattacher (bnc#718227)\n\n - 'General Error' when double-click graphic in presentation (bnc#720948)\n\n - libs-extern-sys\n\n - upgrade graphite to 1.0.3 fix surrogate support\n\n - libs-gui\n\n - crash at exit (bnc#728603)\n\n - radial gradient offset (bnc#714787)\n\n - horizontal scrollbars with KDE oxygen style (bnc#722918)\n\n - rendering of metafiles embedded in EMF+ (updated) (bnc#705956)\n\n - postprocess\n\n - make the 3D transitions work again (bnc#728559)\n\n - ure\n\n - make Duden Korrektor 5 and 6 work\n\n - writer\n\n - frame selection (bnc#740117)\n\n - crash when editing index (bnc#726174)\n\n - order database properties (bnc#740032)\n\n - numbering levels in DOC import (bnc#715115)\n\n - image size issue in DOC import (bnc#718971)\n\n - pointless forward moving of a table (bnc#706138)\n\n - tabs set after the end margin in DOCX import (bnc#693238)\n\n - add hyperlinks by default in Table of Contents (bnc#705956)\n\n - updated to libreoffice-3.4.4.3 (SUSE 3.4.4-rc1 == final) :\n\n - base\n\n - crash when inserting a constant in a query (fdo#38286)\n\n - calc\n\n - crash when modifying a named range\n\n - speed up range name lookup by index (bnc#715104)\n\n - recalculate matrix formula dimension correctly (fdo#39485)\n\n - mark all formula cells dirty when appending a new sheet (fdo#35965)\n\n - components\n\n - handling of SAFEARRAY(s) in olebridge (fdo#38441)\n\n - filters\n\n - auto fit text VIEWING too small in PPT import (fdo#41245)\n\n - impress\n\n - hang in slideshow (fdo#32861)\n\n - crash while dropping texture (fdo#38391)\n\n - libs-core\n\n - recognize .svg in ODF container (fdo#41995)\n\n - dictionaries lost after LibO upgrade (fdo#37195)\n\n - crash when 'Find Record' button is clicked in Base (fdo#40701)\n\n - fix the drawing of dotted and dashed borders in Calc (fdo#37129)\n\n - VBA control events not working; broken eventattacher (bnc#718227)\n\n - libs-extern-sys\n\n - upgrade graphite to 1.0.3 to fix surrogate support\n\n - libs-gui\n\n - crash when changing screen resolution\n\n - let Qt call XInitThreads() (fdo#40298)\n\n - activation order crashes address database (fdo#41022)\n\n - drawing of dotted and dashed borders in Calc (fdo#37129)\n\n - translations\n\n - update translations\n\n - writer\n\n - leak in PDF export (i#116448)\n\n - crash when editing index (bnc#726174)\n\n - crash while processing incorrect range of pages (fdo#35513)\n\n - crash on closing document with footnotes (fdo#39510, lp#854626)", "edition": 5, "reporter": "Tenable", "published": "2014-06-13T00:00:00", "title": "openSUSE Security Update : libreoffice (openSUSE-SU-2012:0428-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2018-08-13T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:libreoffice-mailmerge", "p-cpe:/a:novell:opensuse:libreoffice-l10n-de", "p-cpe:/a:novell:opensuse:libreoffice-l10n-af", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ru", "p-cpe:/a:novell:opensuse:libreoffice", "p-cpe:/a:novell:opensuse:libreoffice-l10n-st", "p-cpe:/a:novell:opensuse:libreoffice-l10n-bg", "p-cpe:/a:novell:opensuse:libreoffice-l10n-pa-IN", "p-cpe:/a:novell:opensuse:libreoffice-help-ja", "p-cpe:/a:novell:opensuse:libreoffice-impress-extensions", "p-cpe:/a:novell:opensuse:libreoffice-l10n-el", "p-cpe:/a:novell:opensuse:libreoffice-help-sl", "p-cpe:/a:novell:opensuse:libreoffice-l10n-rw", "p-cpe:/a:novell:opensuse:libreoffice-officebean", "p-cpe:/a:novell:opensuse:libreoffice-help-ru", "p-cpe:/a:novell:opensuse:libreoffice-help-en-US", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ar", "p-cpe:/a:novell:opensuse:libreoffice-math-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-l10n-en-GB", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ts", "p-cpe:/a:novell:opensuse:libreoffice-debugsource", "p-cpe:/a:novell:opensuse:libreoffice-l10n-uk", "p-cpe:/a:novell:opensuse:libreoffice-gnome-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-help-nl", "p-cpe:/a:novell:opensuse:libreoffice-l10n-br", "p-cpe:/a:novell:opensuse:libreoffice-help-en-GB", "p-cpe:/a:novell:opensuse:libreoffice-l10n-nn", "p-cpe:/a:novell:opensuse:libreoffice-l10n-nb", "p-cpe:/a:novell:opensuse:libreoffice-help-en-ZA", "cpe:/o:novell:opensuse:12.1", "p-cpe:/a:novell:opensuse:libreoffice-pyuno-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-icon-theme-galaxy", "p-cpe:/a:novell:opensuse:libreoffice-icon-themes-prebuilt", "p-cpe:/a:novell:opensuse:libreoffice-help-da", "p-cpe:/a:novell:opensuse:libreoffice-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-help-pt", "p-cpe:/a:novell:opensuse:libreoffice-l10n-da", "p-cpe:/a:novell:opensuse:libreoffice-base", "p-cpe:/a:novell:opensuse:libreoffice-l10n-sv", "p-cpe:/a:novell:opensuse:libreoffice-l10n-sl", "p-cpe:/a:novell:opensuse:libreoffice-l10n-zh-CN", "p-cpe:/a:novell:opensuse:libreoffice-base-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-l10n-tg", "p-cpe:/a:novell:opensuse:libreoffice-l10n-cy", "p-cpe:/a:novell:opensuse:libreoffice-l10n-fi", "p-cpe:/a:novell:opensuse:libreoffice-l10n-sr", "p-cpe:/a:novell:opensuse:libreoffice-l10n-sk", "p-cpe:/a:novell:opensuse:libreoffice-l10n-es", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ko", "p-cpe:/a:novell:opensuse:libreoffice-l10n-zh-TW", "p-cpe:/a:novell:opensuse:libreoffice-draw-extensions", "p-cpe:/a:novell:opensuse:libreoffice-l10n-nl", "p-cpe:/a:novell:opensuse:libreoffice-help-gl", "p-cpe:/a:novell:opensuse:libreoffice-l10n-hu", "p-cpe:/a:novell:opensuse:libreoffice-l10n-he", "p-cpe:/a:novell:opensuse:libreoffice-filters-optional-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-l10n-th", "p-cpe:/a:novell:opensuse:libreoffice-help-pl", "p-cpe:/a:novell:opensuse:libreoffice-sdk-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-icon-theme-hicontrast", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ss", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ve", "p-cpe:/a:novell:opensuse:libreoffice-help-cs", "p-cpe:/a:novell:opensuse:libreoffice-impress-extensions-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-l10n-et", "p-cpe:/a:novell:opensuse:libreoffice-writer", "p-cpe:/a:novell:opensuse:libreoffice-base-drivers-mysql", "p-cpe:/a:novell:opensuse:libreoffice-calc-extensions", "p-cpe:/a:novell:opensuse:libreoffice-l10n-gl", "p-cpe:/a:novell:opensuse:libreoffice-officebean-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-help-gu-IN", "p-cpe:/a:novell:opensuse:libreoffice-impress-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-icon-theme-oxygen", "p-cpe:/a:novell:opensuse:libreoffice-base-drivers-postgresql", "p-cpe:/a:novell:opensuse:libreoffice-l10n-hi-IN", "p-cpe:/a:novell:opensuse:libreoffice-draw", "p-cpe:/a:novell:opensuse:libreoffice-calc-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-icon-theme-tango", "p-cpe:/a:novell:opensuse:libreoffice-l10n-vi", "p-cpe:/a:novell:opensuse:libreoffice-impress", "p-cpe:/a:novell:opensuse:libreoffice-l10n-lt", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ca", "p-cpe:/a:novell:opensuse:libreoffice-filters-optional", "p-cpe:/a:novell:opensuse:libreoffice-l10n-be-BY", "p-cpe:/a:novell:opensuse:libreoffice-help-ko", "p-cpe:/a:novell:opensuse:libreoffice-l10n-hr", "p-cpe:/a:novell:opensuse:libreoffice-writer-extensions", "p-cpe:/a:novell:opensuse:libreoffice-help-fr", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ja", "p-cpe:/a:novell:opensuse:libreoffice-kde", "p-cpe:/a:novell:opensuse:libreoffice-kde4", "p-cpe:/a:novell:opensuse:libreoffice-help-km", "p-cpe:/a:novell:opensuse:libreoffice-help-it", "p-cpe:/a:novell:opensuse:libreoffice-math", "p-cpe:/a:novell:opensuse:libreoffice-help-es", "p-cpe:/a:novell:opensuse:libreoffice-help-hi-IN", "p-cpe:/a:novell:opensuse:libreoffice-l10n-pt-BR", "p-cpe:/a:novell:opensuse:libreoffice-l10n-it", "p-cpe:/a:novell:opensuse:libreoffice-l10n-nr", "p-cpe:/a:novell:opensuse:libreoffice-writer-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ka", "p-cpe:/a:novell:opensuse:libreoffice-l10n-prebuilt", "p-cpe:/a:novell:opensuse:libreoffice-help-pt-BR", "p-cpe:/a:novell:opensuse:libreoffice-l10n-sh", "p-cpe:/a:novell:opensuse:libreoffice-l10n-en-ZA", "p-cpe:/a:novell:opensuse:libreoffice-kde-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-base-drivers-mysql-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-help-sv", "p-cpe:/a:novell:opensuse:libreoffice-l10n-km", "p-cpe:/a:novell:opensuse:libreoffice-testtool-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-l10n-tr", "p-cpe:/a:novell:opensuse:libreoffice-l10n-pl", "p-cpe:/a:novell:opensuse:libreoffice-help-et", "p-cpe:/a:novell:opensuse:libreoffice-l10n-pt", "p-cpe:/a:novell:opensuse:libreoffice-pyuno", "p-cpe:/a:novell:opensuse:libreoffice-calc", "p-cpe:/a:novell:opensuse:libreoffice-icon-theme-crystal", "p-cpe:/a:novell:opensuse:libreoffice-l10n-gu-IN", "p-cpe:/a:novell:opensuse:libreoffice-kde4-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-l10n-cs", "p-cpe:/a:novell:opensuse:libreoffice-base-drivers-postgresql-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-sdk", "p-cpe:/a:novell:opensuse:libreoffice-testtool", "p-cpe:/a:novell:opensuse:libreoffice-help-zh-CN", "p-cpe:/a:novell:opensuse:libreoffice-l10n-xh", "p-cpe:/a:novell:opensuse:libreoffice-gnome", "p-cpe:/a:novell:opensuse:libreoffice-l10n-ga", "p-cpe:/a:novell:opensuse:libreoffice-branding-upstream", "p-cpe:/a:novell:opensuse:libreoffice-help-zh-TW", "p-cpe:/a:novell:opensuse:libreoffice-l10n-fr", "p-cpe:/a:novell:opensuse:libreoffice-draw-extensions-debuginfo", "p-cpe:/a:novell:opensuse:libreoffice-help-de", "p-cpe:/a:novell:opensuse:libreoffice-base-extensions", "p-cpe:/a:novell:opensuse:libreoffice-l10n-mk", "p-cpe:/a:novell:opensuse:libreoffice-help-hu", "p-cpe:/a:novell:opensuse:libreoffice-l10n-zu"], "id": "OPENSUSE-2012-183.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=74581", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2012-183.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(74581);\n script_version(\"1.2\");\n script_cvs_date(\"Date: 2018/08/13 14:32:39\");\n\n script_cve_id(\"CVE-2012-0037\");\n\n script_name(english:\"openSUSE Security Update : libreoffice (openSUSE-SU-2012:0428-1)\");\n script_summary(english:\"Check for the openSUSE-2012-183 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - updated to libreoffice-3.4.5.5 (SUSE 3.4.5-rc3) :\n\n - extras\n\n - add SUSE color palette (fate#312645)\n\n - filters\n\n - crash when loading embedded elements (bnc#693238)\n\n - crash when importing an empty paragraph (rh#667082)\n\n - writer\n\n - do not use an invalidated iterator (fdo#46337)\n\n - updated to libreoffice-3.4.5.4 (SUSE 3.4.5-rc2)\n\n - calc\n\n - pie charts colors messed in XLS import (fdo#40320)\n\n - correctly import data point formats in data series\n (fdo#40320)\n\n - components\n\n - crash when parsing XML signatures (fdo#39657)\n\n - broken getDataArray (fdo#46165, fdo#38441, i#117010)\n\n - don't paint a frame around the list of edit boxes\n (fdo#42543)\n\n - inconsistent compression method for encrypted documents\n (bnc#653688)\n\n - filters\n\n - more on bentConnectors (bnc#736495)\n\n - wrong text color in smartArt (bnc#746996)\n\n - reading of w:textbox contents (bnc#693388)\n\n - textbox position and size DOCX import (fdo#45560)\n\n - RTF/DOCX import of transparent frames (bnc#695479)\n\n - consecutive frames in RTF/DOCX import (bnc#703032)\n\n - handling of frame properties in RTF import (bnc#417818)\n\n - force imported XLSX active tab to be shown (bnc#748198)\n\n - create TableManager for inside shapes (bnc#747471,\n bnc#693238)\n\n - textboxes import with OLE objects inside (bnc#747471,\n bnc#693238)\n\n - impress\n\n - do not create an empty slide when printing handouts\n (fdo#31966)\n\n - libs-core\n\n - default shortcut for .uno:SearchDialog should be Ctrl+H\n\n - crash using instances dialog of dataform navigator\n (fdo#44816)\n\n - libs-extern\n\n - disable problematic reading of external entities in\n raptor\n\n - libs-gui\n\n - correctly calculate leap year\n\n - use proper Indian Rupee currency symbol U+20B9\n (rh#794679)\n\n - writer\n\n - field refreshing (fdo#39694)\n\n - more layout crashers (i#101776, fdo#39510)\n\n - textbox borders style and width in DOCX import\n (fdo#45560)\n\n - expand all text fields when setting properties\n (fdo#42073)\n\n - updated to libreoffice-3.4.5.3 (SUSE 3.4.5-rc1)\n\n - version 3.4.5.3, tag suse-3.4.5.3 (SUSE LO 3.4.5-rc1)\n\n - SmartArt import\n\n - custom shapes import\n\n - Oracle Java 1.7.0 detection\n\n - reading AES-encrypted ODF 1.2 documents as generated by\n LO 3.5\n\n - base\n\n - iterator misuse (fdo #44040, bnc#742178)\n\n - calc\n\n - allow pasting to multiple ranges (bnc#715094)\n\n - correctly convert chart data ranges (bnc#727504)\n\n - definedName corruption for XLSX export (bnc#741182)\n\n - adjust/shrink the ranges while copying (bnc#677811)\n\n - extra graph data is displayed for label (bnc#717290)\n\n - getCellRangeByName failure for named range (bnc#738113)\n\n - graph in XLS file has dates displayed wrong (bnc#720443)\n\n - improve performance of large Excel documents\n (bnc#715104)\n\n - display page background color/image properly\n (bnc#722045)\n\n - pivot table output becoming empty on re-save\n (bnc#715543)\n\n - encode virtual paths to local volume correctly\n (bnc#719887)\n\n - avoid adjusting cell-anchored objects on other sheets\n (bnc#726152)\n\n - make sure to adjust the sheet index of drawing objects\n (bnc#733864)\n\n - make the data validation popup more reliable (fdo\n #36851, bnc#737190)\n\n - filters\n\n - table style (bnc#705991)\n\n - text rotation fixes (bnc#734734)\n\n - crash in PPTX import (bnc#706792)\n\n - read w:sdt* contents (bnc#705949)\n\n - connector shape fixes (bnc#719989)\n\n - legacy fragment import (bnc#699334)\n\n - non-working Excel macros (bnc#705977)\n\n - free drawn curves import (bnc#657909)\n\n - group shape transformations (bnc#621739)\n\n - extLst of drawings in diagrams import (bnc#655408)\n\n - flip properties of custom shapes import (bnc#705985)\n\n - line spacing is used from previous values (bnc#734734)\n\n - missing ooxml customshape->mso shape name entries\n (bnc#737921)\n\n - word doesn't break the numberings and prefers hiding\n them (bnc#707157)\n\n - impress\n\n - undo corruption (bnc#685123)\n\n - do not set duplicate master slide names (bnc#735533)\n\n - libs-core\n\n - handle copy and paste from ConsoleOne (bnc#704274)\n\n - VBA control events not working, broken eventattacher\n (bnc#718227)\n\n - 'General Error' when double-click graphic in\n presentation (bnc#720948)\n\n - libs-extern-sys\n\n - upgrade graphite to 1.0.3 fix surrogate support\n\n - libs-gui\n\n - crash at exit (bnc#728603)\n\n - radial gradient offset (bnc#714787)\n\n - horizontal scrollbars with KDE oxygen style (bnc#722918)\n\n - rendering of metafiles embedded in EMF+ (updated)\n (bnc#705956)\n\n - postprocess\n\n - make the 3D transitions work again (bnc#728559)\n\n - ure\n\n - make Duden Korrektor 5 and 6 work\n\n - writer\n\n - frame selection (bnc#740117)\n\n - crash when editing index (bnc#726174)\n\n - order database properties (bnc#740032)\n\n - numbering levels in DOC import (bnc#715115)\n\n - image size issue in DOC import (bnc#718971)\n\n - pointless forward moving of a table (bnc#706138)\n\n - tabs set after the end margin in DOCX import\n (bnc#693238)\n\n - add hyperlinks by default in Table of Contents\n (bnc#705956)\n\n - updated to libreoffice-3.4.4.3 (SUSE 3.4.4-rc1 == \nfinal) :\n\n - base\n\n - crash when inserting a constant in a query (fdo#38286)\n\n - calc\n\n - crash when modifying a named range\n\n - speed up range name lookup by index (bnc#715104)\n\n - recalculate matrix formula dimension correctly\n (fdo#39485)\n\n - mark all formula cells dirty when appending a new sheet\n (fdo#35965)\n\n - components\n\n - handling of SAFEARRAY(s) in olebridge (fdo#38441)\n\n - filters\n\n - auto fit text VIEWING too small in PPT import\n (fdo#41245)\n\n - impress\n\n - hang in slideshow (fdo#32861)\n\n - crash while dropping texture (fdo#38391)\n\n - libs-core\n\n - recognize .svg in ODF container (fdo#41995)\n\n - dictionaries lost after LibO upgrade (fdo#37195)\n\n - crash when 'Find Record' button is clicked in Base\n (fdo#40701)\n\n - fix the drawing of dotted and dashed borders in Calc\n (fdo#37129)\n\n - VBA control events not working; broken eventattacher\n (bnc#718227)\n\n - libs-extern-sys\n\n - upgrade graphite to 1.0.3 to fix surrogate support\n\n - libs-gui\n\n - crash when changing screen resolution\n\n - let Qt call XInitThreads() (fdo#40298)\n\n - activation order crashes address database (fdo#41022)\n\n - drawing of dotted and dashed borders in Calc (fdo#37129)\n\n - translations\n\n - update translations\n\n - writer\n\n - leak in PDF export (i#116448)\n\n - crash when editing index (bnc#726174)\n\n - crash while processing incorrect range of pages\n (fdo#35513)\n\n - crash on closing document with footnotes (fdo#39510,\n lp#854626)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://lists.opensuse.org/opensuse-updates/2012-03/msg00049.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=417818\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=621739\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=653688\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=655408\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=657909\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=677811\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=685123\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=693238\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=693388\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=695479\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=699334\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=703032\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=704274\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=705949\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=705956\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=705977\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=705985\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=705991\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=706138\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=706792\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=707157\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=714787\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=715094\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=715104\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=715115\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=715543\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=717290\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=718227\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=718971\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=719887\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=719989\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=720443\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=720948\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=722045\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=722644\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=722918\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=724087\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=726152\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=726174\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=727504\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=728559\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=728603\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=733864\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=734734\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=734781\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=735533\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=736495\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=737190\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=737921\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=738113\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=740032\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=740117\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=740453\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=741043\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=741182\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=742178\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=746996\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=747471\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=748198\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=748548\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected libreoffice packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-base-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-base-drivers-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-base-drivers-mysql-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-base-drivers-postgresql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-base-drivers-postgresql-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-base-extensions\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-branding-upstream\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-calc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-calc-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-calc-extensions\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-draw\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-draw-extensions\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-draw-extensions-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-filters-optional\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-filters-optional-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-gnome-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-cs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-da\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-de\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-en-GB\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-en-US\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-en-ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-es\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-et\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-fr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-gl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-gu-IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-hi-IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-hu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-it\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-ja\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-km\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-ko\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-nl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-pl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-pt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-pt-BR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-ru\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-sl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-sv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-zh-CN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-help-zh-TW\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-crystal\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-galaxy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-hicontrast\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-oxygen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-tango\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-icon-themes-prebuilt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-impress\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-impress-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-impress-extensions\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-impress-extensions-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-kde\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-kde-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-kde4\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-kde4-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-af\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-be-BY\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-bg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-br\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ca\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-cs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-cy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-da\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-de\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-el\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-en-GB\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-en-ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-es\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-et\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-fi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-fr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ga\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-gl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-gu-IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-he\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-hi-IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-hr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-hu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-it\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ja\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ka\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-km\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ko\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-lt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-mk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-nb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-nl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-nn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-nr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-pa-IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-pl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-prebuilt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-pt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-pt-BR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ru\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-rw\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-sh\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-sk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-sl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-sr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ss\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-st\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-sv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-tg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-th\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-tr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ts\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-uk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-ve\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-vi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-xh\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-zh-CN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-zh-TW\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-l10n-zu\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-mailmerge\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-math\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-math-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-officebean\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-officebean-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-pyuno\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-pyuno-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-sdk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-sdk-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-testtool\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-testtool-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-writer\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-writer-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libreoffice-writer-extensions\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:12.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/03/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE12\\.1)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"12.1\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-base-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-base-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-base-drivers-mysql-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-base-drivers-mysql-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-base-drivers-postgresql-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-base-drivers-postgresql-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-base-extensions-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-branding-upstream-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-calc-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-calc-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-calc-extensions-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-debugsource-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-draw-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-draw-extensions-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-draw-extensions-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-filters-optional-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-filters-optional-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-gnome-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-gnome-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-cs-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-da-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-de-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-en-GB-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-en-US-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-en-ZA-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-es-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-et-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-fr-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-gl-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-gu-IN-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-hi-IN-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-hu-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-it-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-ja-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-km-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-ko-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-nl-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-pl-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-pt-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-pt-BR-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-ru-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-sl-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-sv-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-zh-CN-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-help-zh-TW-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-icon-theme-crystal-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-icon-theme-galaxy-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-icon-theme-hicontrast-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-icon-theme-oxygen-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-icon-theme-tango-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-icon-themes-prebuilt-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-impress-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-impress-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-impress-extensions-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-impress-extensions-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-kde-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-kde-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-kde4-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-kde4-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-af-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-ar-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-be-BY-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-bg-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-br-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-ca-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-cs-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-cy-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-da-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-de-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-el-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-en-GB-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-en-ZA-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-es-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-et-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-fi-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-fr-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-ga-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-gl-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-gu-IN-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-he-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-hi-IN-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-hr-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-hu-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-it-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-ja-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-ka-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-km-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-ko-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-lt-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-mk-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-nb-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-nl-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-nn-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-nr-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-pa-IN-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-pl-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-prebuilt-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-pt-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-pt-BR-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-ru-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-rw-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-sh-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-sk-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-sl-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-sr-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-ss-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-st-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-sv-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-tg-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-th-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-tr-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-ts-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-uk-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-ve-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-vi-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-xh-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-zh-CN-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-zh-TW-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-l10n-zu-3.4.5.5-2.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-mailmerge-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-math-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-math-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-officebean-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-officebean-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-pyuno-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-pyuno-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-sdk-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-sdk-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-testtool-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-testtool-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-writer-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-writer-debuginfo-3.4.5.5-4.5.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.1\", reference:\"libreoffice-writer-extensions-3.4.5.5-4.5.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libreoffice-branding-upstream / libreoffice-help-en-US / etc\");\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-02T00:09:13", "references": ["http://www.libreoffice.org/advisories/CVE-2012-0037/"], "pluginID": "58726", "description": "The remote host is running a version of LibreOffice < 3.4.6 / 3.5.1 that has flaws in the way certain XML components are processed for external entities in ODF documents. These flaws can be utilized to access and inject the content of local files into an ODF document without a user's knowledge or permission, or inject arbitrary code that would be executed when opened by the user.", "edition": 5, "reporter": "Tenable", "published": "2012-04-12T00:00:00", "title": "LibreOffice < 3.4.6 / 3.5.1 XML External Entity RDF Document Handling Information Disclosure", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Windows", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2018-07-12T00:00:00", "cpe": ["cpe:/a:libreoffice:libreoffice"], "id": "LIBREOFFICE_351.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=58726", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n\ninclude(\"compat.inc\");\n\n\nif (description)\n{\n script_id(58726);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/07/12 19:01:17\");\n\n script_cve_id(\"CVE-2012-0037\");\n script_bugtraq_id(52681);\n\n script_name(english:\"LibreOffice < 3.4.6 / 3.5.1 XML External Entity RDF Document Handling Information Disclosure\");\n script_summary(english:\"Checks if patch is installed\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote host is running an application affected by a data leakage\nvulnerability.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"The remote host is running a version of LibreOffice < 3.4.6 / 3.5.1\nthat has flaws in the way certain XML components are processed for\nexternal entities in ODF documents. These flaws can be utilized to\naccess and inject the content of local files into an ODF document\nwithout a user's knowledge or permission, or inject arbitrary code\nthat would be executed when opened by the user.\"\n );\n script_set_attribute(attribute:\"see_also\", value:\"http://www.libreoffice.org/advisories/CVE-2012-0037/\");\n script_set_attribute(\n attribute:\"solution\",\n value:\"Upgrade to LibreOffice 3.4.6 / 3.5.1 or higher.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2012/03/22\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/03/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/04/12\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:libreoffice:libreoffice\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2012-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"libreoffice_installed.nasl\");\n script_require_keys(\"SMB/LibreOffice/Version\");\n\n exit(0);\n}\n\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nkb_base = \"SMB/LibreOffice\";\n\nversion = get_kb_item_or_exit(kb_base+\"/Version\");\npath = get_kb_item_or_exit(kb_base+\"/Path\");\nversion_ui = get_kb_item_or_exit(kb_base+\"/Version_UI\");\n\nif (\n version =~ \"^3\\.3\\.\" ||\n (version =~ \"^3\\.4\\.\" &&\n ver_compare(ver:version, fix:'3.4.602.500', strict:FALSE) == -1)\n ||\n (version =~ \"^3\\.5\\.\" &&\n ver_compare(ver:version, fix:'3.5.0.102', strict:FALSE) == -1)\n)\n{\n port = get_kb_item(\"SMB/transport\");\n if (report_verbosity > 0)\n {\n report = \n '\\n Path : ' + path + \n '\\n Installed version : ' + version_ui + \n '\\n Fixed version : 3.4.6 / 3.5.1\\n';\n security_hole(port:port, extra:report);\n }\n else security_hole(port);\n}\nelse exit(0, \"The LibreOffice \"+version_ui+\" install under \"+path+\" is not affected.\");\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-02T00:10:39", "references": ["http://www.nessus.org/u?7bbd6f62"], "pluginID": "61288", "description": "Raptor provides parsers for Resource Description Framework (RDF) files.\n\nAn XML External Entity expansion flaw was found in the way Raptor processed RDF files. If an application linked against Raptor were to open a specially crafted RDF file, it could possibly allow a remote attacker to obtain a copy of an arbitrary local file that the user running the application had access to. A bug in the way Raptor handled external entities could cause that application to crash or, possibly, execute arbitrary code with the privileges of the user running the application. (CVE-2012-0037)\n\nAll Raptor users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. All running applications linked against Raptor must be restarted for this update to take effect.", "edition": 4, "reporter": "Tenable", "published": "2012-08-01T00:00:00", "title": "Scientific Linux Security Update : raptor on SL6.x i386/x86_64", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Scientific Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2014-08-16T00:00:00", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "id": "SL_20120322_RAPTOR_ON_SL6_X.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=61288", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61288);\n script_version(\"$Revision: 1.3 $\");\n script_cvs_date(\"$Date: 2014/08/16 19:47:27 $\");\n\n script_cve_id(\"CVE-2012-0037\");\n\n script_name(english:\"Scientific Linux Security Update : raptor on SL6.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Raptor provides parsers for Resource Description Framework (RDF)\nfiles.\n\nAn XML External Entity expansion flaw was found in the way Raptor\nprocessed RDF files. If an application linked against Raptor were to\nopen a specially crafted RDF file, it could possibly allow a remote\nattacker to obtain a copy of an arbitrary local file that the user\nrunning the application had access to. A bug in the way Raptor handled\nexternal entities could cause that application to crash or, possibly,\nexecute arbitrary code with the privileges of the user running the\napplication. (CVE-2012-0037)\n\nAll Raptor users are advised to upgrade to these updated packages,\nwhich contain a backported patch to correct this issue. All running\napplications linked against Raptor must be restarted for this update\nto take effect.\"\n );\n # http://listserv.fnal.gov/scripts/wa.exe?A2=ind1203&L=scientific-linux-errata&T=0&P=4178\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?7bbd6f62\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected raptor, raptor-debuginfo and / or raptor-devel\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/03/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2014 Tenable Network Security, Inc.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL6\", reference:\"raptor-1.4.18-5.el6_2.1\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"raptor-debuginfo-1.4.18-5.el6_2.1\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"raptor-devel-1.4.18-5.el6_2.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-09-01T23:51:26", "references": [], "pluginID": "59567", "description": "Timothy D. Morgan discovered that Raptor would unconditionally load XML external entities. If a user were tricked into opening a specially crafted document in an application linked against Raptor, an attacker could possibly obtain access to arbitrary files on the user's system or potentially execute arbitrary code with the privileges of the user invoking the program.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2012-06-19T00:00:00", "title": "Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : raptor vulnerability (USN-1480-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2012-0037"], "modified": "2018-08-01T00:00:00", "cpe": ["cpe:/o:canonical:ubuntu_linux:11.10", "cpe:/o:canonical:ubuntu_linux:11.04", "cpe:/o:canonical:ubuntu_linux:10.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:libraptor1", "cpe:/o:canonical:ubuntu_linux:12.04:-:lts"], "id": "UBUNTU_USN-1480-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=59567", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-1480-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(59567);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2018/08/01 17:36:14\");\n\n script_cve_id(\"CVE-2012-0037\");\n script_bugtraq_id(52681);\n script_xref(name:\"USN\", value:\"1480-1\");\n\n script_name(english:\"Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : raptor vulnerability (USN-1480-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Timothy D. Morgan discovered that Raptor would unconditionally load\nXML external entities. If a user were tricked into opening a specially\ncrafted document in an application linked against Raptor, an attacker\ncould possibly obtain access to arbitrary files on the user's system\nor potentially execute arbitrary code with the privileges of the user\ninvoking the program.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected libraptor1 package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libraptor1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:10.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:11.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:11.10\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2012/06/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/06/19\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2012-2018 Canonical, Inc. / NASL script (C) 2012-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(10\\.04|11\\.04|11\\.10|12\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 10.04 / 11.04 / 11.10 / 12.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"10.04\", pkgname:\"libraptor1\", pkgver:\"1.4.21-1ubuntu1.1\")) flag++;\nif (ubuntu_check(osver:\"11.04\", pkgname:\"libraptor1\", pkgver:\"1.4.21-2ubuntu0.1\")) flag++;\nif (ubuntu_check(osver:\"11.10\", pkgname:\"libraptor1\", pkgver:\"1.4.21-5ubuntu0.1\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"libraptor1\", pkgver:\"1.4.21-7ubuntu0.1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libraptor1\");\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "ubuntu": [{"lastseen": "2018-08-31T00:09:08", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-0037"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "2.0.6-1ubuntu0.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libraptor2-0", "operator": "lt"}], "description": "Timothy D. Morgan discovered that Raptor would unconditionally load XML external entities. If a user were tricked into opening a specially crafted document in an application linked against Raptor, an attacker could possibly obtain access to arbitrary files on the user\u2019s system or potentially execute arbitrary code with the privileges of the user invoking the program.", "edition": 3, "reporter": "Ubuntu", "published": "2013-07-08T00:00:00", "title": "Raptor vulnerability", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-0037"], "modified": "2013-07-08T00:00:00", "id": "USN-1901-1", "href": "https://usn.ubuntu.com/1901-1/", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-08-31T00:09:05", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2012-0037"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "11.10", "packageVersion": "1.4.21-5ubuntu0.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libraptor1", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "1.4.21-2ubuntu0.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libraptor1", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "1.4.21-1ubuntu1.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libraptor1", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "1.4.21-7ubuntu0.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libraptor1", "operator": "lt"}], "description": "Timothy D. Morgan discovered that Raptor would unconditionally load XML external entities. If a user were tricked into opening a specially crafted document in an application linked against Raptor, an attacker could possibly obtain access to arbitrary files on the user\u2019s system or potentially execute arbitrary code with the privileges of the user invoking the program.", "edition": 3, "reporter": "Ubuntu", "published": "2012-06-18T00:00:00", "title": "Raptor vulnerability", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-0037"], "modified": "2012-06-18T00:00:00", "id": "USN-1480-1", "href": "https://usn.ubuntu.com/1480-1/", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "freebsd": [{"lastseen": "2018-08-31T01:15:09", "references": ["http://seclists.org/fulldisclosure/2012/Mar/281", "http://www.vsecurity.com/resources/advisory/20120324-1/"], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "2.0.7", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "raptor2", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "1.4.21_2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "raptor", "operator": "lt"}], "description": "\nTimothy D. Morgan reports:\n\nIn December 2011, VSR identified a vulnerability in multiple open\n\t source office products (including OpenOffice, LibreOffice, KOffice,\n\t and AbiWord) due to unsafe interpretation of XML files with custom\n\t entity declarations. Deeper analysis revealed that the\n\t vulnerability was caused by acceptance of external entities by the\n\t libraptor library, which is used by librdf and is in turn used by\n\t these office products.\nIn the context of office applications, these vulnerabilities could\n\t allow for XML External Entity (XXE) attacks resulting in file theft\n\t and a loss of user privacy when opening potentially malicious ODF\n\t documents. For other applications which depend on librdf or\n\t libraptor, potentially serious consequences could result from\n\t accepting RDF/XML content from untrusted sources, though the impact\n\t may vary widely depending on the context.\n\n", "edition": 3, "reporter": "FreeBSD", "published": "2012-03-24T00:00:00", "title": "raptor/raptor2 -- XXE in RDF/XML File Interpretation", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-0037"], "modified": "2012-03-24T00:00:00", "id": "60F81AF3-7690-11E1-9423-00235A5F2C9A", "href": "https://vuxml.freebsd.org/freebsd/60f81af3-7690-11e1-9423-00235a5f2c9a.html", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "redhat": [{"lastseen": "2017-09-09T07:20:15", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-debuginfo-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "src", "packageFilename": "openoffice.org-3.1.1-19.10.el5_8.1.src.rpm", "packageName": "openoffice.org", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-debuginfo-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-calc-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-calc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-core-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-core", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-base-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-base", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-emailmerge-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-emailmerge", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-headless-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-headless", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-impress-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-impress", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-javafilter-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-javafilter", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-draw-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-draw", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-graphicfilter-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-graphicfilter", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-bn-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-bn", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-ca_ES-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-ca_ES", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-cy_GB-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-cy_GB", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-el_GR-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-el_GR", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-eu_ES-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-eu_ES", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-fr-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-fr", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-hi_IN-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-hi_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-hu_HU-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-hu_HU", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-it-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-it", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-ko_KR-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-ko_KR", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-ml_IN-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-ml_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-nn_NO-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-nn_NO", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-pl_PL-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-pl_PL", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-pt_BR-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-pt_BR", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-sr_CS-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-sr_CS", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-st_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-st_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-sv-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-sv", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-tr_TR-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-tr_TR", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-af_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-af_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-ar-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-ar", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-as_IN-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-as_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-bg_BG-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-bg_BG", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-cs_CZ-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-cs_CZ", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-da_DK-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-da_DK", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-de-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-de", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-es-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-es", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-et_EE-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-et_EE", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-fi_FI-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-fi_FI", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-ga_IE-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-ga_IE", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-gl_ES-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-gl_ES", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-gu_IN-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-gu_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-he_IL-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-he_IL", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-hr_HR-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-hr_HR", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-ja_JP-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-ja_JP", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-kn_IN-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-kn_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-lt_LT-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-lt_LT", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-mr_IN-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-mr_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-ms_MY-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-ms_MY", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-nb_NO-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-nb_NO", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-nl-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-nl", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-nr_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-nr_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-nso_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-nso_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-or_IN-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-or_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-pa_IN-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-pa_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-pt_PT-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-pt_PT", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-ru-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-ru", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-sk_SK-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-sk_SK", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-sl_SI-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-sl_SI", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-ss_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-ss_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-ta_IN-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-ta_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-te_IN-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-te_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-th_TH-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-th_TH", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-tn_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-tn_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-ve_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-ve_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-writer-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-writer", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-ts_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-ts_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-ur-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-ur", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-xh_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-xh_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-zh_CN-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-zh_CN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-zh_TW-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-zh_TW", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-langpack-zu_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-langpack-zu_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-math-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-math", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-pyuno-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-pyuno", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-testtools-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-testtools", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-ure-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-ure", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-xsltfilter-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-xsltfilter", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-base-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-base", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-calc-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-calc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-draw-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-draw", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-core-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-core", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-emailmerge-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-emailmerge", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-headless-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-headless", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-af_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-af_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-ar-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-ar", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-as_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-as_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-graphicfilter-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-graphicfilter", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-impress-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-impress", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-javafilter-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-javafilter", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-bg_BG-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-bg_BG", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-cs_CZ-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-cs_CZ", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-es-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-es", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-fi_FI-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-fi_FI", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-ga_IE-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-ga_IE", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-gu_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-gu_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-hr_HR-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-hr_HR", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-hu_HU-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-hu_HU", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-ml_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-ml_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-mr_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-mr_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-nn_NO-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-nn_NO", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-nso_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-nso_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-pl_PL-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-pl_PL", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-sl_SI-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-sl_SI", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-ss_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-ss_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-ta_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-ta_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-tr_TR-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-tr_TR", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-bn-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-bn", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-ca_ES-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-ca_ES", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-cy_GB-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-cy_GB", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-da_DK-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-da_DK", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-de-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-de", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-el_GR-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-el_GR", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-et_EE-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-et_EE", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-eu_ES-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-eu_ES", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-fr-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-fr", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-gl_ES-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-gl_ES", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-he_IL-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-he_IL", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-hi_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-hi_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-it-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-it", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-ja_JP-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-ja_JP", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-kn_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-kn_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-ko_KR-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-ko_KR", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-lt_LT-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-lt_LT", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-ms_MY-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-ms_MY", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-nb_NO-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-nb_NO", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-nl-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-nl", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-nr_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-nr_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-or_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-or_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-pa_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-pa_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-pt_BR-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-pt_BR", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-pt_PT-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-pt_PT", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-ru-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-ru", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-sk_SK-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-sk_SK", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-sr_CS-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-sr_CS", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-st_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-st_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-sv-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-sv", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-te_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-te_IN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-th_TH-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-th_TH", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-tn_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-tn_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-ur-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-ur", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-ve_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-ve_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-zh_CN-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-zh_CN", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-math-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-math", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-ure-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-ure", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-ts_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-ts_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-xh_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-xh_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-zh_TW-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-zh_TW", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-langpack-zu_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-langpack-zu_ZA", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-pyuno-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-pyuno", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-testtools-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-testtools", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-writer-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-writer", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-xsltfilter-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-xsltfilter", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-sdk-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-sdk", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageFilename": "openoffice.org-sdk-doc-3.1.1-19.10.el5_8.1.i386.rpm", "packageName": "openoffice.org-sdk-doc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-sdk-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-sdk", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageFilename": "openoffice.org-sdk-doc-3.1.1-19.10.el5_8.1.x86_64.rpm", "packageName": "openoffice.org-sdk-doc", "operator": "lt"}], "description": "OpenOffice.org is an office productivity suite that includes desktop\napplications, such as a word processor, spreadsheet application,\npresentation manager, formula editor, and a drawing program. OpenOffice.org\nembeds a copy of Raptor, which provides parsers for Resource Description\nFramework (RDF) files.\n\nAn XML External Entity expansion flaw was found in the way Raptor processed\nRDF files. If OpenOffice.org were to open a specially-crafted file (such\nas an OpenDocument Format or OpenDocument Presentation file), it could\npossibly allow a remote attacker to obtain a copy of an arbitrary local\nfile that the user running OpenOffice.org had access to. A bug in the way\nRaptor handled external entities could cause OpenOffice.org to crash or,\npossibly, execute arbitrary code with the privileges of the user running \nOpenOffice.org. (CVE-2012-0037)\n\nRed Hat would like to thank Timothy D. Morgan of VSR for reporting this\nissue.\n\nAll OpenOffice.org users are advised to upgrade to these updated packages,\nwhich contain backported patches to correct this issue. All running\ninstances of OpenOffice.org applications must be restarted for this update\nto take effect.\n", "reporter": "RedHat", "published": "2012-03-22T04:00:00", "type": "redhat", "title": "(RHSA-2012:0411) Important: openoffice.org security update", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-0037"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T12:18:09", "id": "RHSA-2012:0411", "href": "https://access.redhat.com/errata/RHSA-2012:0411", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-06-06T18:04:41", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "i686", "packageName": "raptor-debuginfo", "packageFilename": "raptor-debuginfo-1.4.18-5.el6_2.1.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "src", "packageName": "raptor", "packageFilename": "raptor-1.4.18-5.el6_2.1.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "x86_64", "packageName": "raptor-debuginfo", "packageFilename": "raptor-debuginfo-1.4.18-5.el6_2.1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "i686", "packageName": "raptor-devel", "packageFilename": "raptor-devel-1.4.18-5.el6_2.1.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "x86_64", "packageName": "raptor-devel", "packageFilename": "raptor-devel-1.4.18-5.el6_2.1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "i686", "packageName": "raptor", "packageFilename": "raptor-1.4.18-5.el6_2.1.i686.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "x86_64", "packageName": "raptor", "packageFilename": "raptor-1.4.18-5.el6_2.1.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "ppc64", "packageName": "raptor-debuginfo", "packageFilename": "raptor-debuginfo-1.4.18-5.el6_2.1.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "ppc", "packageName": "raptor-debuginfo", "packageFilename": "raptor-debuginfo-1.4.18-5.el6_2.1.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "ppc64", "packageName": "raptor-devel", "packageFilename": "raptor-devel-1.4.18-5.el6_2.1.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "ppc", "packageName": "raptor-devel", "packageFilename": "raptor-devel-1.4.18-5.el6_2.1.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "ppc", "packageName": "raptor", "packageFilename": "raptor-1.4.18-5.el6_2.1.ppc.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "ppc64", "packageName": "raptor", "packageFilename": "raptor-1.4.18-5.el6_2.1.ppc64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "s390x", "packageName": "raptor-debuginfo", "packageFilename": "raptor-debuginfo-1.4.18-5.el6_2.1.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "s390", "packageName": "raptor-debuginfo", "packageFilename": "raptor-debuginfo-1.4.18-5.el6_2.1.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "s390", "packageName": "raptor-devel", "packageFilename": "raptor-devel-1.4.18-5.el6_2.1.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "s390x", "packageName": "raptor-devel", "packageFilename": "raptor-devel-1.4.18-5.el6_2.1.s390x.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "s390", "packageName": "raptor", "packageFilename": "raptor-1.4.18-5.el6_2.1.s390.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "s390x", "packageName": "raptor", "packageFilename": "raptor-1.4.18-5.el6_2.1.s390x.rpm", "operator": "lt"}], "description": "Raptor provides parsers for Resource Description Framework (RDF) files.\n\nAn XML External Entity expansion flaw was found in the way Raptor processed\nRDF files. If an application linked against Raptor were to open a \nspecially-crafted RDF file, it could possibly allow a remote attacker to \nobtain a copy of an arbitrary local file that the user running the\napplication had access to. A bug in the way Raptor handled external\nentities could cause that application to crash or, possibly, execute\narbitrary code with the privileges of the user running the application.\n(CVE-2012-0037)\n\nRed Hat would like to thank Timothy D. Morgan of VSR for reporting this\nissue.\n\nAll Raptor users are advised to upgrade to these updated packages, which\ncontain a backported patch to correct this issue. All running applications\nlinked against Raptor must be restarted for this update to take effect.\n", "reporter": "RedHat", "published": "2012-03-22T04:00:00", "type": "redhat", "title": "(RHSA-2012:0410) Important: raptor security update", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-0037"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-06T20:24:17", "id": "RHSA-2012:0410", "href": "https://access.redhat.com/errata/RHSA-2012:0410", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "debian": [{"lastseen": "2018-10-16T22:14:30", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "6", "packageVersion": "1.4.21-2+squeeze1", "arch": "all", "packageFilename": "libraptor1-dev_1.4.21-2+squeeze1_all.deb", "packageName": "libraptor1-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1.4.21-2+squeeze1", "arch": "all", "packageFilename": "libraptor1-dbg_1.4.21-2+squeeze1_all.deb", "packageName": "libraptor1-dbg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1.4.21-2+squeeze1", "arch": "all", "packageFilename": "raptor_1.4.21-2+squeeze1_all.deb", "packageName": "raptor", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1.4.21-2+squeeze1", "arch": "all", "packageFilename": "libraptor1-doc_1.4.21-2+squeeze1_all.deb", "packageName": "libraptor1-doc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1.4.21-2+squeeze1", "arch": "all", "packageFilename": "raptor-utils_1.4.21-2+squeeze1_all.deb", "packageName": "raptor-utils", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "1.4.21-2+squeeze1", "arch": "all", "packageFilename": "libraptor1_1.4.21-2+squeeze1_all.deb", "packageName": "libraptor1", "operator": "lt"}], "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-2438-1 security@debian.org\nhttp://www.debian.org/security/ Moritz Muehlenhoff\nMarch 22, 2012 http://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : raptor\nVulnerability : programming error\nProblem type : remote\nDebian-specific: no\nCVE ID : CVE-2012-0037\n\nIt was discovered that Raptor, a RDF parser and serializer library,\nallows file inclusion through XML entities, resulting in information\ndisclosure.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 1.4.21-2+squeeze1.\n\nFor the unstable distribution (sid), this problem will be fixed soon.\n\nWe recommend that you upgrade your raptor packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: http://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "edition": 1, "reporter": "Debian", "published": "2012-03-22T17:03:08", "title": "[SECURITY] [DSA 2438-1] raptor security update", "type": "debian", "enchantments": {}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-0037"], "modified": "2012-03-22T17:03:08", "id": "DEBIAN:DSA-2438-1:5F194", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2012/msg00066.html", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "oraclelinux": [{"lastseen": "2018-08-31T01:42:57", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "i686", "packageFilename": "raptor-1.4.18-5.el6_2.1.i686.rpm", "packageName": "raptor", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "i686", "packageFilename": "raptor-1.4.18-5.el6_2.1.i686.rpm", "packageName": "raptor", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "i686", "packageFilename": "raptor-devel-1.4.18-5.el6_2.1.i686.rpm", "packageName": "raptor-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "i686", "packageFilename": "raptor-devel-1.4.18-5.el6_2.1.i686.rpm", "packageName": "raptor-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "src", "packageFilename": "raptor-1.4.18-5.el6_2.1.src.rpm", "packageName": "raptor", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "src", "packageFilename": "raptor-1.4.18-5.el6_2.1.src.rpm", "packageName": "raptor", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "x86_64", "packageFilename": "raptor-1.4.18-5.el6_2.1.x86_64.rpm", "packageName": "raptor", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "arch": "x86_64", "packageFilename": "raptor-devel-1.4.18-5.el6_2.1.x86_64.rpm", "packageName": "raptor-devel", "operator": "lt"}], "description": "[1.4.18-5.1]\n- Fixed XML entity expansion that could lead to information disclosure (CVE-2012-0037)\n Resolves: rhbz#804496", "edition": 3, "reporter": "Oracle", "published": "2012-03-22T00:00:00", "title": "raptor security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-0037"], "modified": "2012-03-22T00:00:00", "id": "ELSA-2012-0410", "href": "http://linux.oracle.com/errata/ELSA-2012-0410.html", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "centos": [{"lastseen": "2017-10-03T18:24:36", "references": ["https://rhn.redhat.com/errata/RHSA-2012-0410.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "packageFilename": "raptor-1.4.18-5.el6_2.1.i686.rpm", "packageName": "raptor", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "packageFilename": "raptor-1.4.18-5.el6_2.1.i686.rpm", "packageName": "raptor", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "packageFilename": "raptor-1.4.18-5.el6_2.1.src.rpm", "packageName": "raptor", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "packageFilename": "raptor-devel-1.4.18-5.el6_2.1.i686.rpm", "packageName": "raptor-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "packageFilename": "raptor-devel-1.4.18-5.el6_2.1.i686.rpm", "packageName": "raptor-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "packageFilename": "raptor-devel-1.4.18-5.el6_2.1.x86_64.rpm", "packageName": "raptor-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "6", "packageVersion": "1.4.18-5.el6_2.1", "packageFilename": "raptor-1.4.18-5.el6_2.1.x86_64.rpm", "packageName": "raptor", "arch": "x86_64", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2012:0410\n\n\nRaptor provides parsers for Resource Description Framework (RDF) files.\n\nAn XML External Entity expansion flaw was found in the way Raptor processed\nRDF files. If an application linked against Raptor were to open a \nspecially-crafted RDF file, it could possibly allow a remote attacker to \nobtain a copy of an arbitrary local file that the user running the\napplication had access to. A bug in the way Raptor handled external\nentities could cause that application to crash or, possibly, execute\narbitrary code with the privileges of the user running the application.\n(CVE-2012-0037)\n\nRed Hat would like to thank Timothy D. Morgan of VSR for reporting this\nissue.\n\nAll Raptor users are advised to upgrade to these updated packages, which\ncontain a backported patch to correct this issue. All running applications\nlinked against Raptor must be restarted for this update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2012-March/018518.html\n\n**Affected packages:**\nraptor\nraptor-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2012-0410.html", "edition": 1, "reporter": "CentOS Project", "published": "2012-03-22T16:07:09", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "raptor security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2012-0037"], "modified": "2012-03-22T16:07:09", "href": "http://lists.centos.org/pipermail/centos-announce/2012-March/018518.html", "id": "CESA-2012:0410", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2017-10-03T18:26:56", "references": ["https://rhn.redhat.com/errata/RHSA-2012-0411.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-ca_ES", "packageFilename": "openoffice.org-langpack-ca_ES-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-ur", "packageFilename": "openoffice.org-langpack-ur-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-xsltfilter", "packageFilename": "openoffice.org-xsltfilter-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-es", "packageFilename": "openoffice.org-langpack-es-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-ga_IE", "packageFilename": "openoffice.org-langpack-ga_IE-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-ml_IN", "packageFilename": "openoffice.org-langpack-ml_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-nl", "packageFilename": "openoffice.org-langpack-nl-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-kn_IN", "packageFilename": "openoffice.org-langpack-kn_IN-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-sdk", "packageFilename": "openoffice.org-sdk-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-gu_IN", "packageFilename": "openoffice.org-langpack-gu_IN-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-eu_ES", "packageFilename": "openoffice.org-langpack-eu_ES-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-ml_IN", "packageFilename": "openoffice.org-langpack-ml_IN-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-xh_ZA", "packageFilename": "openoffice.org-langpack-xh_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-th_TH", "packageFilename": "openoffice.org-langpack-th_TH-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-cy_GB", "packageFilename": "openoffice.org-langpack-cy_GB-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-writer", "packageFilename": "openoffice.org-writer-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-ga_IE", "packageFilename": "openoffice.org-langpack-ga_IE-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-ss_ZA", "packageFilename": "openoffice.org-langpack-ss_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-hi_IN", "packageFilename": "openoffice.org-langpack-hi_IN-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-he_IL", "packageFilename": "openoffice.org-langpack-he_IL-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-cy_GB", "packageFilename": "openoffice.org-langpack-cy_GB-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-eu_ES", "packageFilename": "openoffice.org-langpack-eu_ES-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-bg_BG", "packageFilename": "openoffice.org-langpack-bg_BG-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-he_IL", "packageFilename": "openoffice.org-langpack-he_IL-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-tn_ZA", "packageFilename": "openoffice.org-langpack-tn_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-af_ZA", "packageFilename": "openoffice.org-langpack-af_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-el_GR", "packageFilename": "openoffice.org-langpack-el_GR-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-it", "packageFilename": "openoffice.org-langpack-it-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-de", "packageFilename": "openoffice.org-langpack-de-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-sv", "packageFilename": "openoffice.org-langpack-sv-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-sr_CS", "packageFilename": "openoffice.org-langpack-sr_CS-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-ta_IN", "packageFilename": "openoffice.org-langpack-ta_IN-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-th_TH", "packageFilename": "openoffice.org-langpack-th_TH-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-ar", "packageFilename": "openoffice.org-langpack-ar-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-zu_ZA", "packageFilename": "openoffice.org-langpack-zu_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-nb_NO", "packageFilename": "openoffice.org-langpack-nb_NO-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-zh_TW", "packageFilename": "openoffice.org-langpack-zh_TW-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-sdk", "packageFilename": "openoffice.org-sdk-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-sr_CS", "packageFilename": "openoffice.org-langpack-sr_CS-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-fr", "packageFilename": "openoffice.org-langpack-fr-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-ca_ES", "packageFilename": "openoffice.org-langpack-ca_ES-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-base", "packageFilename": "openoffice.org-base-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-writer", "packageFilename": "openoffice.org-writer-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-es", "packageFilename": "openoffice.org-langpack-es-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-sk_SK", "packageFilename": "openoffice.org-langpack-sk_SK-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-pyuno", "packageFilename": "openoffice.org-pyuno-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-emailmerge", "packageFilename": "openoffice.org-emailmerge-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-core", "packageFilename": "openoffice.org-core-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-zh_CN", "packageFilename": "openoffice.org-langpack-zh_CN-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-ja_JP", "packageFilename": "openoffice.org-langpack-ja_JP-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-bg_BG", "packageFilename": "openoffice.org-langpack-bg_BG-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-ss_ZA", "packageFilename": "openoffice.org-langpack-ss_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-sl_SI", "packageFilename": "openoffice.org-langpack-sl_SI-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-ts_ZA", "packageFilename": "openoffice.org-langpack-ts_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-nr_ZA", "packageFilename": "openoffice.org-langpack-nr_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-fi_FI", "packageFilename": "openoffice.org-langpack-fi_FI-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-it", "packageFilename": "openoffice.org-langpack-it-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-zh_TW", "packageFilename": "openoffice.org-langpack-zh_TW-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-ure", "packageFilename": "openoffice.org-ure-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-javafilter", "packageFilename": "openoffice.org-javafilter-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-ts_ZA", "packageFilename": "openoffice.org-langpack-ts_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-pa_IN", "packageFilename": "openoffice.org-langpack-pa_IN-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-base", "packageFilename": "openoffice.org-base-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-ja_JP", "packageFilename": "openoffice.org-langpack-ja_JP-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-nn_NO", "packageFilename": "openoffice.org-langpack-nn_NO-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-ure", "packageFilename": "openoffice.org-ure-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-emailmerge", "packageFilename": "openoffice.org-emailmerge-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-pt_PT", "packageFilename": "openoffice.org-langpack-pt_PT-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-pl_PL", "packageFilename": "openoffice.org-langpack-pl_PL-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-sdk-doc", "packageFilename": "openoffice.org-sdk-doc-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-draw", "packageFilename": "openoffice.org-draw-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-or_IN", "packageFilename": "openoffice.org-langpack-or_IN-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-cs_CZ", "packageFilename": "openoffice.org-langpack-cs_CZ-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-headless", "packageFilename": "openoffice.org-headless-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-javafilter", "packageFilename": "openoffice.org-javafilter-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-nl", "packageFilename": "openoffice.org-langpack-nl-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-ru", "packageFilename": "openoffice.org-langpack-ru-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-hi_IN", "packageFilename": "openoffice.org-langpack-hi_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-ko_KR", "packageFilename": "openoffice.org-langpack-ko_KR-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-calc", "packageFilename": "openoffice.org-calc-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-nn_NO", "packageFilename": "openoffice.org-langpack-nn_NO-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-pa_IN", "packageFilename": "openoffice.org-langpack-pa_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-zu_ZA", "packageFilename": "openoffice.org-langpack-zu_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-testtools", "packageFilename": "openoffice.org-testtools-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-hu_HU", "packageFilename": "openoffice.org-langpack-hu_HU-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-bn", "packageFilename": "openoffice.org-langpack-bn-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-tr_TR", "packageFilename": "openoffice.org-langpack-tr_TR-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-gl_ES", "packageFilename": "openoffice.org-langpack-gl_ES-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-pyuno", "packageFilename": "openoffice.org-pyuno-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-or_IN", "packageFilename": "openoffice.org-langpack-or_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-kn_IN", "packageFilename": "openoffice.org-langpack-kn_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-pl_PL", "packageFilename": "openoffice.org-langpack-pl_PL-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-tr_TR", "packageFilename": "openoffice.org-langpack-tr_TR-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-te_IN", "packageFilename": "openoffice.org-langpack-te_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-af_ZA", "packageFilename": "openoffice.org-langpack-af_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-ve_ZA", "packageFilename": "openoffice.org-langpack-ve_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-lt_LT", "packageFilename": "openoffice.org-langpack-lt_LT-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-ko_KR", "packageFilename": "openoffice.org-langpack-ko_KR-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-fi_FI", "packageFilename": "openoffice.org-langpack-fi_FI-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-da_DK", "packageFilename": "openoffice.org-langpack-da_DK-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-as_IN", "packageFilename": "openoffice.org-langpack-as_IN-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-impress", "packageFilename": "openoffice.org-impress-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "any", "packageName": "openoffice.org", "packageFilename": "openoffice.org-3.1.1-19.10.el5_8.1.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-draw", "packageFilename": "openoffice.org-draw-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-da_DK", "packageFilename": "openoffice.org-langpack-da_DK-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-ta_IN", "packageFilename": "openoffice.org-langpack-ta_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-zh_CN", "packageFilename": "openoffice.org-langpack-zh_CN-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-ve_ZA", "packageFilename": "openoffice.org-langpack-ve_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-as_IN", "packageFilename": "openoffice.org-langpack-as_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-bn", "packageFilename": "openoffice.org-langpack-bn-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-core", "packageFilename": "openoffice.org-core-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-ms_MY", "packageFilename": "openoffice.org-langpack-ms_MY-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-graphicfilter", "packageFilename": "openoffice.org-graphicfilter-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-testtools", "packageFilename": "openoffice.org-testtools-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-calc", "packageFilename": "openoffice.org-calc-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-ru", "packageFilename": "openoffice.org-langpack-ru-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-nso_ZA", "packageFilename": "openoffice.org-langpack-nso_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-ms_MY", "packageFilename": "openoffice.org-langpack-ms_MY-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-math", "packageFilename": "openoffice.org-math-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-pt_BR", "packageFilename": "openoffice.org-langpack-pt_BR-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-et_EE", "packageFilename": "openoffice.org-langpack-et_EE-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-sl_SI", "packageFilename": "openoffice.org-langpack-sl_SI-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-st_ZA", "packageFilename": "openoffice.org-langpack-st_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-ar", "packageFilename": "openoffice.org-langpack-ar-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-gu_IN", "packageFilename": "openoffice.org-langpack-gu_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-nr_ZA", "packageFilename": "openoffice.org-langpack-nr_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-mr_IN", "packageFilename": "openoffice.org-langpack-mr_IN-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-sv", "packageFilename": "openoffice.org-langpack-sv-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-xh_ZA", "packageFilename": "openoffice.org-langpack-xh_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-hr_HR", "packageFilename": "openoffice.org-langpack-hr_HR-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-pt_PT", "packageFilename": "openoffice.org-langpack-pt_PT-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-te_IN", "packageFilename": "openoffice.org-langpack-te_IN-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-pt_BR", "packageFilename": "openoffice.org-langpack-pt_BR-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-et_EE", "packageFilename": "openoffice.org-langpack-et_EE-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-tn_ZA", "packageFilename": "openoffice.org-langpack-tn_ZA-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-lt_LT", "packageFilename": "openoffice.org-langpack-lt_LT-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-nb_NO", "packageFilename": "openoffice.org-langpack-nb_NO-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-math", "packageFilename": "openoffice.org-math-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-nso_ZA", "packageFilename": "openoffice.org-langpack-nso_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-st_ZA", "packageFilename": "openoffice.org-langpack-st_ZA-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-fr", "packageFilename": "openoffice.org-langpack-fr-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-el_GR", "packageFilename": "openoffice.org-langpack-el_GR-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-hu_HU", "packageFilename": "openoffice.org-langpack-hu_HU-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-cs_CZ", "packageFilename": "openoffice.org-langpack-cs_CZ-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-sdk-doc", "packageFilename": "openoffice.org-sdk-doc-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-gl_ES", "packageFilename": "openoffice.org-langpack-gl_ES-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-de", "packageFilename": "openoffice.org-langpack-de-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-mr_IN", "packageFilename": "openoffice.org-langpack-mr_IN-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-graphicfilter", "packageFilename": "openoffice.org-graphicfilter-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-headless", "packageFilename": "openoffice.org-headless-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-xsltfilter", "packageFilename": "openoffice.org-xsltfilter-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-langpack-sk_SK", "packageFilename": "openoffice.org-langpack-sk_SK-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-ur", "packageFilename": "openoffice.org-langpack-ur-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "i386", "packageName": "openoffice.org-impress", "packageFilename": "openoffice.org-impress-3.1.1-19.10.el5_8.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "3.1.1-19.10.el5_8.1", "arch": "x86_64", "packageName": "openoffice.org-langpack-hr_HR", "packageFilename": "openoffice.org-langpack-hr_HR-3.1.1-19.10.el5_8.1.x86_64.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2012:0411\n\n\nOpenOffice.org is an office productivity suite that includes desktop\napplications, such as a word processor, spreadsheet application,\npresentation manager, formula editor, and a drawing program. OpenOffice.org\nembeds a copy of Raptor, which provides parsers for Resource Description\nFramework (RDF) files.\n\nAn XML External Entity expansion flaw was found in the way Raptor processed\nRDF files. If OpenOffice.org were to open a specially-crafted file (such\nas an OpenDocument Format or OpenDocument Presentation file), it could\npossibly allow a remote attacker to obtain a copy of an arbitrary local\nfile that the user running OpenOffice.org had access to. A bug in the way\nRaptor handled external entities could cause OpenOffice.org to crash or,\npossibly, execute arbitrary code with the privileges of the user running \nOpenOffice.org. (CVE-2012-0037)\n\nRed Hat would like to thank Timothy D. Morgan of VSR for reporting this\nissue.\n\nAll OpenOffice.org users are advised to upgrade to these updated packages,\nwhich contain backported patches to correct this issue. All running\ninstances of OpenOffice.org applications must be restarted for this update\nto take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2012-March/018519.html\n\n**Affected packages:**\nopenoffice.org\nopenoffice.org-base\nopenoffice.org-calc\nopenoffice.org-core\nopenoffice.org-draw\nopenoffice.org-emailmerge\nopenoffice.org-graphicfilter\nopenoffice.org-headless\nopenoffice.org-impress\nopenoffice.org-javafilter\nopenoffice.org-langpack-af_ZA\nopenoffice.org-langpack-ar\nopenoffice.org-langpack-as_IN\nopenoffice.org-langpack-bg_BG\nopenoffice.org-langpack-bn\nopenoffice.org-langpack-ca_ES\nopenoffice.org-langpack-cs_CZ\nopenoffice.org-langpack-cy_GB\nopenoffice.org-langpack-da_DK\nopenoffice.org-langpack-de\nopenoffice.org-langpack-el_GR\nopenoffice.org-langpack-es\nopenoffice.org-langpack-et_EE\nopenoffice.org-langpack-eu_ES\nopenoffice.org-langpack-fi_FI\nopenoffice.org-langpack-fr\nopenoffice.org-langpack-ga_IE\nopenoffice.org-langpack-gl_ES\nopenoffice.org-langpack-gu_IN\nopenoffice.org-langpack-he_IL\nopenoffice.org-langpack-hi_IN\nopenoffice.org-langpack-hr_HR\nopenoffice.org-langpack-hu_HU\nopenoffice.org-langpack-it\nopenoffice.org-langpack-ja_JP\nopenoffice.org-langpack-kn_IN\nopenoffice.org-langpack-ko_KR\nopenoffice.org-langpack-lt_LT\nopenoffice.org-langpack-ml_IN\nopenoffice.org-langpack-mr_IN\nopenoffice.org-langpack-ms_MY\nopenoffice.org-langpack-nb_NO\nopenoffice.org-langpack-nl\nopenoffice.org-langpack-nn_NO\nopenoffice.org-langpack-nr_ZA\nopenoffice.org-langpack-nso_ZA\nopenoffice.org-langpack-or_IN\nopenoffice.org-langpack-pa_IN\nopenoffice.org-langpack-pl_PL\nopenoffice.org-langpack-pt_BR\nopenoffice.org-langpack-pt_PT\nopenoffice.org-langpack-ru\nopenoffice.org-langpack-sk_SK\nopenoffice.org-langpack-sl_SI\nopenoffice.org-langpack-sr_CS\nopenoffice.org-langpack-ss_ZA\nopenoffice.org-langpack-st_ZA\nopenoffice.org-langpack-sv\nopenoffice.org-langpack-ta_IN\nopenoffice.org-langpack-te_IN\nopenoffice.org-langpack-th_TH\nopenoffice.org-langpack-tn_ZA\nopenoffice.org-langpack-tr_TR\nopenoffice.org-langpack-ts_ZA\nopenoffice.org-langpack-ur\nopenoffice.org-langpack-ve_ZA\nopenoffice.org-langpack-xh_ZA\nopenoffice.org-langpack-zh_CN\nopenoffice.org-langpack-zh_TW\nopenoffice.org-langpack-zu_ZA\nopenoffice.org-math\nopenoffice.org-pyuno\nopenoffice.org-sdk\nopenoffice.org-sdk-doc\nopenoffice.org-testtools\nopenoffice.org-ure\nopenoffice.org-writer\nopenoffice.org-xsltfilter\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2012-0411.html", "edition": 1, "reporter": "CentOS Project", "published": "2012-03-23T14:34:12", "title": "openoffice.org security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2012-0037"], "modified": "2012-03-23T14:34:12", "href": "http://lists.centos.org/pipermail/centos-announce/2012-March/018519.html", "id": "CESA-2012:0411", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "seebug": [{"lastseen": "2017-11-19T17:54:22", "_object_types": ["robots.models.base.Bulletin", "robots.models.seebug.SeebugBulletin"], "references": [], "enchantments_done": [], "description": "Bugtraq ID: 52681\r\nCVE ID\uff1aCVE-2012-0037\r\n\r\nOpenOffice\u662f\u4e00\u6b3e\u5f00\u653e\u6e90\u4ee3\u7801\u7684\u6587\u5b57\u5904\u7406\u7cfb\u7edf\r\n\r\nOpenOffice.org\u5b58\u5728\u4e00\u4e2aXML\u5916\u90e8\u5b9e\u4f53\u653b\u51fb\uff0c\u5904\u7406ODF\u6587\u6863\u4e2d\u67d0\u4e9bXML\u7ec4\u4ef6\u4e2d\u7684\u5916\u90e8\u5b9e\u4f53\u65f6\u5b58\u5728\u6f0f\u6d1e\uff0c\u901a\u8fc7\u6784\u5efa\u5916\u90e8\u5b9e\u4f53\u5f15\u7528\u5176\u4ed6\u672c\u5730\u6587\u4ef6\u7cfb\u7edf\u8d44\u6e90\uff0c\u653b\u51fb\u8005\u53ef\u4ee5\u65e0\u9700\u7528\u6237\u4ea4\u4e92\u628a\u672c\u5730\u5185\u5bb9\u6ce8\u5165\u5230ODF\u6587\u6863\u4e2d\uff0c\u5bfc\u81f4\u4fe1\u606f\u6cc4\u9732\n0\nOpenOffice 3.4 Beta\r\nOpenOffice 3.3\n\u5382\u5546\u89e3\u51b3\u65b9\u6848\r\n\r\n\r\n\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u4f9b\u5e94\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttp://www.openoffice.org/security/cves/CVE-2012-0037.html", "reporter": "Root", "published": "2012-03-23T00:00:00", "type": "seebug", "title": "OpenOffice ODF\u6587\u6863\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2012-0037"], "_object_type": "robots.models.seebug.SeebugBulletin", "modified": "2012-03-23T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-30216", "id": "SSV:30216", "sourceData": "", "sourceHref": "", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "status": "details"}], "gentoo": [{"lastseen": "2016-09-06T19:46:55", "references": ["https://bugs.gentoo.org/show_bug.cgi?id=416457", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1149", "https://bugs.gentoo.org/show_bug.cgi?id=386081", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2665", "https://bugs.gentoo.org/show_bug.cgi?id=409455", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0037", "https://bugs.gentoo.org/show_bug.cgi?id=429482", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2713"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "3.5.5.3", "packageName": "app-office/libreoffice", "packageFilename": "UNKNOWN", "arch": "all", "operator": "lt"}, {"OS": "Gentoo", "OSVersion": "any", "packageVersion": "3.5.5.3", "packageName": "app-office/libreoffice-bin", "packageFilename": "UNKNOWN", "arch": "all", "operator": "lt"}], "description": "### Background\n\nLibreOffice is a full office productivity suite.\n\n### Description\n\nMultiple vulnerabilities have been found in LibreOffice:\n\n * The Microsoft Word Document parser contains an out-of-bounds read error (CVE-2011-2713). \n * The Raptor RDF parser contains an XML External Entity expansion error (CVE-2012-0037). \n * The graphic loading parser contains an integer overflow error which could cause a heap-based buffer overflow (CVE-2012-1149). \n * Multiple errors in the XML manifest handling code could cause a heap-based buffer overflow (CVE-2012-2665). \n\n### Impact\n\nA remote attacker could entice a user to open a specially crafted document file using LibreOffice, possibly resulting in execution of arbitrary code with the privileges of the process or a Denial of Service condition. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll LibreOffice users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=app-office/libreoffice-3.5.5.3\"\n \n\nAll users of the LibreOffice binary package should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose\n \">=app-office/libreoffice-bin-3.5.5.3\"", "edition": 1, "reporter": "Gentoo Foundation", "published": "2012-09-24T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "type": "gentoo", "title": "LibreOffice: Multiple vulnerabilities", "bulletinFamily": "unix", "cvelist": ["CVE-2012-0037", "CVE-2012-2665", "CVE-2011-2713", "CVE-2012-1149"], "modified": "2012-09-24T00:00:00", "id": "GLSA-201209-05", "href": "https://security.gentoo.org/glsa/201209-05", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-09-06T19:46:15", "references": ["https://bugs.gentoo.org/show_bug.cgi?id=352864", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2149", "https://bugs.gentoo.org/show_bug.cgi?id=514886", "https://bugs.gentoo.org/show_bug.cgi?id=320491", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2936", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-4339", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-1149", "https://bugs.gentoo.org/show_bug.cgi?id=283370", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2334", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0201", "https://bugs.gentoo.org/show_bug.cgi?id=409509", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4643", "https://bugs.gentoo.org/show_bug.cgi?id=332321", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-2949", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-2950", "https://bugs.gentoo.org/show_bug.cgi?id=386081", "https://bugs.gentoo.org/show_bug.cgi?id=305195", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2935", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2665", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3450", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-3301", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0247", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-3302", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3689", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0217", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-0395", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3454", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0200", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0037", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3451", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4253", "https://bugs.gentoo.org/show_bug.cgi?id=429482", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2713", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3453", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3452"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "3.5.5.3", "packageName": "app-office/openoffice", "packageFilename": "UNKNOWN", "arch": "all", "operator": "le"}, {"OS": "Gentoo", "OSVersion": "any", "packageVersion": "4.2.5.2", "packageName": "app-office/libreoffice-bin", "packageFilename": "UNKNOWN", "arch": "all", "operator": "lt"}, {"OS": "Gentoo", "OSVersion": "any", "packageVersion": "3.5.5.3", "packageName": "app-office/openoffice-bin", "packageFilename": "UNKNOWN", "arch": "all", "operator": "lt"}, {"OS": "Gentoo", "OSVersion": "any", "packageVersion": "4.2.5.2", "packageName": "app-office/libreoffice", "packageFilename": "UNKNOWN", "arch": "all", "operator": "lt"}], "description": "### Background\n\nOpenOffice is the open source version of StarOffice, a full office productivity suite. LibreOffice is a fork of OpenOffice. \n\n### Description\n\nMultiple vulnerabilities have been discovered in OpenOffice and Libreoffice. Please review the CVE identifiers referenced below for details. \n\n### Impact\n\nA remote attacker could entice a user to open a specially crafted file using OpenOffice, possibly resulting in execution of arbitrary code with the privileges of the process, a Denial of Service condition, execution of arbitrary Python code, authentication bypass, or reading and writing of arbitrary files. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll OpenOffice (binary) users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose\n \">=app-office/openoffice-bin-3.5.5.3\"\n \n\nAll LibreOffice users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=app-office/libreoffice-4.2.5.2\"\n \n\nAll LibreOffice (binary) users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose\n \">=app-office/libreoffice-bin-4.2.5.2\"\n \n\nWe recommend that users unmerge OpenOffice:\n \n \n # emerge --unmerge \"app-office/openoffice\"", "edition": 1, "reporter": "Gentoo Foundation", "published": "2014-08-31T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "type": "gentoo", "title": "OpenOffice, LibreOffice: Multiple vulnerabilities", "bulletinFamily": "unix", "cvelist": ["CVE-2012-0037", "CVE-2009-3302", "CVE-2012-2665", "CVE-2010-3450", "CVE-2009-3301", "CVE-2009-0217", "CVE-2009-0200", "CVE-2009-2949", "CVE-2012-2149", "CVE-2011-2713", "CVE-2006-4339", "CVE-2010-3689", "CVE-2010-4253", "CVE-2012-2334", "CVE-2010-2935", "CVE-2010-3451", "CVE-2010-0395", "CVE-2009-2950", "CVE-2010-3454", "CVE-2010-4643", "CVE-2010-3453", "CVE-2014-0247", "CVE-2010-2936", "CVE-2009-0201", "CVE-2012-1149", "CVE-2010-3452"], "modified": "2014-08-31T00:00:00", "id": "GLSA-201408-19", "href": "https://security.gentoo.org/glsa/201408-19", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}
