Debian DSA-3394-1 : libreoffice - security update

medium Nessus Plugin ID 86772

Synopsis

The remote Debian host is missing a security-related update.

Description

Multiple vulnerabilities have been discovered in LibreOffice, a full-featured office productivity :

- CVE-2015-4551 Federico Scrinzi discovered an information leak in the handling of ODF documents. Quoting from: The LinkUpdateMode feature controls whether documents inserted into Writer or Calc via links will either not get updated, or prompt to update, or automatically update, when the parent document is loaded. The configuration of this option was stored in the document.
That flawed approach enabled documents to be crafted with links to plausible targets on the victims host computer. The contents of those automatically inserted after load links can be concealed in hidden sections and retrieved by the attacker if the document is saved and returned to sender, or via http requests if the user has selected lower security settings for that document.

- CVE-2015-5212 A buffer overflow in parsing the printer setup information in ODF documents may result in the execution of arbitrary code.

- CVE-2015-5213 / CVE-2015-5214 A buffer overflow and an integer overflow in parsing Microsoft Word documents may result in the execution of arbitrary code.

Solution

Upgrade the libreoffice packages.

For the oldstable distribution (wheezy), these problems have been fixed in version 1:3.5.4+dfsg2-0+deb7u5.

For the stable distribution (jessie), these problems have been fixed in version 1:4.3.3-2+deb8u2.

See Also

https://security-tracker.debian.org/tracker/CVE-2015-4551

https://security-tracker.debian.org/tracker/CVE-2015-5212

https://security-tracker.debian.org/tracker/CVE-2015-5213

https://security-tracker.debian.org/tracker/CVE-2015-5214

https://packages.debian.org/source/wheezy/libreoffice

https://packages.debian.org/source/jessie/libreoffice

https://www.debian.org/security/2015/dsa-3394

Plugin Details

Severity: Medium

ID: 86772

File Name: debian_DSA-3394.nasl

Version: 2.9

Type: local

Agent: unix

Published: 11/6/2015

Updated: 1/11/2021

Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/o:debian:debian_linux:8.0, p-cpe:/a:debian:debian_linux:libreoffice, cpe:/o:debian:debian_linux:7.0

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Patch Publication Date: 11/5/2015

Reference Information

CVE: CVE-2015-4551, CVE-2015-5212, CVE-2015-5213, CVE-2015-5214

DSA: 3394