-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQIcBAEBCgAGBQJUBgZgAAoJEAUvNnAY1cPYLB4QALtmC5N4PQn96opZNgQC6p/N
9kolfHZynDZnsU4ny8tEgenA/bOBye07Tt9N6Xb7S53cx1rZ8X3gJhPVMi4VyUtz
uM3Qc3gfp1nhjTmNOgaGcGkxd1GTzmIc3xjPQYJuRJR8Sg4xzQCKcwdiVcfyo38+
TtbBso0rRRhpXD+llWrre9ZWGxfqa9+wvZ3GSVT8YVVmVFMgaK4V4OQtIh0COfyT
rO5kgo6UsJbSc7kVeKwkKPPVe2CWoOIi1Sh67ZBAjw87fz1np0tFhGaIri+gZLtt
3p/bxqzAyrc1xO7vHq5emrHu7iyucen4nS98hAN9S8NdMht8cIQIW5zkC+mZhJ8K
Z5ePWxY/VaoePvl0/54KapP8rp1/m8/sX2Mkw8xAWr+yZmi/Vme5DCX7vf+XFUlH
NTRrkT302CUmraFBQKL9hWXM3Xy89jJHgTfLS/S4RPXHQ9yeIoUi5lMeVy4RtIgo
Zfr7uVfopc98d1XuMwvZKZg8bAZBxBrpoL9NbGvn9MZa9tEXTmLiLByF4Ixx4Ov4
ugHZIPIgoIRl8L7J9WQ47+oVwASqR86q9QWUNnZCmF+KngjreHz+dhGDLv5I7bFK
tNvgEOcBmIsBgqgmda9pH9HEJhuRXQkXLt9pZwMX+BjQMoTyuIr/xmSX1RPTNuIP
P261yON+J92Wt7V093zI
=x8zB
-----END PGP SIGNATURE-----
==========================================================================
Ubuntu Security Notice USN-2331-1
September 02, 2014
libreoffice vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 14.04 LTS
Summary:
LibreOffice Calc could be made to crash or run programs as your login if it
opened a specially crafted file.
Software Description:
- libreoffice: Office productivity suite
Details:
Rohan Durve and James Kettle discovered LibreOffice Calc sometimes allowed
for command injection when opening spreadsheets. If a user were tricked
into opening a crafted Calc spreadsheet, an attacker could exploit this to
run programs as your login.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 14.04 LTS:
libreoffice-core 1:4.2.6.3-0ubuntu1
After a standard system update you need to restart LibreOffice to make
all the necessary changes.
References:
http://www.ubuntu.com/usn/usn-2331-1
CVE-2014-3524
Package Information:
https://launchpad.net/ubuntu/+source/libreoffice/1:4.2.6.3-0ubuntu1
No comments:
Post a Comment