CVE-2015-4551

2015-11-0300:00:00

ubuntu.com

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

59.6%

JSON

LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 uses the stored
LinkUpdateMode configuration information in OpenDocument Format files and
templates when handling links, which might allow remote attackers to obtain
sensitive information via a crafted document, which embeds data from local
files into (1) Calc or (2) Writer.

OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchlibreoffice< 1:3.5.7-0ubuntu9UNKNOWN
ubuntu14.04noarchlibreoffice< 1:4.2.8-0ubuntu3UNKNOWN
ubuntu15.04noarchlibreoffice< 1:4.4.6~rc3-0ubuntu1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	12.04	noarch	libreoffice	< 1:3.5.7-0ubuntu9	UNKNOWN
ubuntu	14.04	noarch	libreoffice	< 1:4.2.8-0ubuntu3	UNKNOWN
ubuntu	15.04	noarch	libreoffice	< 1:4.4.6~rc3-0ubuntu1	UNKNOWN