Improper Digital Signature Invalidation vulnerability in Zip Repair Mode of The Document Foundation LibreOffice allows Signature forgery vulnerability in LibreOfficeThis issue affects LibreOffice: from 24.2 before < 24.2.5.

The version of libreoffice installed on the remote host is prior to 5.3.6.1-21. It is, therefore, affected by a vulnerability as referenced in the ALAS2LIBREOFFICE-2024-005 advisory.

    Improper Digital Signature Invalidation  vulnerability in Zip Repair Mode of The Document Foundation     LibreOffice allows Signature forgery vulnerability in LibreOfficeThis issue affects LibreOffice: from 24.2     before < 24.2.5. (CVE-2024-7788)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-3915 advisory.

    - -------------------------------------------------------------------------     Debian LTS Advisory DLA-3915-1                debian-lts@lists.debian.org     https://www.debian.org/lts/security/                   Bastien Roucaris     October 12, 2024                              https://wiki.debian.org/LTS
    - -------------------------------------------------------------------------

    Package        : libreoffice     Version        : 1:7.0.4-4+deb11u11     CVE ID         : CVE-2024-7788

    Various file formats are based on the zip file format. In cases of     corruption of the underlying zip's central directory,     LibreOffice offers a repair mode which will attempt to     recover the zip file structure by scanning for secondary local     file headers in the zip to reconstruct the document.

    Prior to this fix, in the case of digitally signed zip files,     an attacker could construct a document which, when repaired,     reported a signature status not valid for the recovered file.

    Previously if verification failed the user could choose     to ignore the failure and enable the macros anyway.

    Repair document mode has to be inherently tolerant,     so now in fixed versions all signatures are implied to     be invalid in recovery mode.

    For Debian 11 bullseye, this problem has been fixed in version     1:7.0.4-4+deb11u11.

    We recommend that you upgrade your libreoffice packages.

    For the detailed security status of libreoffice please refer to     its security tracker page at:
    https://security-tracker.debian.org/tracker/libreoffice

    Further information about Debian LTS security advisories, how to apply     these updates to your system and frequently asked questions can be     found at: https://wiki.debian.org/LTS

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of LibreOffice installed on the remote host is prior to 24.2.5 / 24.8.0. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-7788 advisory.

  - Improper Digital Signature Invalidation vulnerability in Zip Repair Mode of The Document Foundation     LibreOffice allows Signature forgery vulnerability in LibreOfficeThis issue affects LibreOffice: from 24.2     before < 24.2.5. (CVE-2024-7788)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-7025-1 advisory.

    It was discovered that LibreOffice would incorrectly handle digital signature verification after repairing     a corrupted document. A remote attacker could possibly use this issue to forge valid signatures.

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5772 advisory.

    - -------------------------------------------------------------------------     Debian Security Advisory DSA-5772-1                   security@debian.org     https://www.debian.org/security/                       Moritz Muehlenhoff     September 17, 2024                    https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package        : libreoffice     CVE ID         : CVE-2024-7788

    Yufan You discovered that Libreoffice's handling of documents based on     ZIP archives was suspectible to spoofing attacks when the repair mode     attempts to address a malformed archive structure.

    For additional information please refer to     https://www.libreoffice.org/about-us/security/advisories/cve-2024-7788/

    For the stable distribution (bookworm), this problem has been fixed in     version 4:7.4.7-1+deb12u5.

    We recommend that you upgrade your libreoffice packages.

    For the detailed security status of libreoffice please refer to     its security tracker page at:
    https://security-tracker.debian.org/tracker/libreoffice

    Further information about Debian Security Advisories, how to apply     these updates to your system and frequently asked questions can be     found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
210924	Amazon Linux 2 : libreoffice (ALASLIBREOFFICE-2024-005)	Nessus	Amazon Linux Local Security Checks	high
208783	Debian dla-3915 : fonts-opensymbol - security update	Nessus	Debian Local Security Checks	high
207465	LibreOffice 24.2.x < 24.2.5 / 24.8.0 (CVE-2024-7788)	Nessus	Misc.	high
207457	Ubuntu 20.04 LTS / 22.04 LTS : LibreOffice vulnerability (USN-7025-1)	Nessus	Ubuntu Local Security Checks	high
207365	Debian dsa-5772 : fonts-opensymbol - security update	Nessus	Debian Local Security Checks	high

Detections

Analytics

CVE-2024-7788

high

Tenable Plugins

high

high

high

high

high