Bug 45916 - libreoffice: Multiple issues (4.2)
libreoffice: Multiple issues (4.2)
Status: CLOSED FIXED
Product: UCS
Classification: Unclassified
Component: Security updates
UCS 4.2
Other Linux
: P5 normal (vote)
: UCS 4.2-3-errata
Assigned To: Philipp Hahn
Arvid Requate
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2017-12-20 21:54 CET by Arvid Requate
Modified: 2018-05-08 14:56 CEST (History)
0 users

See Also:
What kind of report is it?: Security Issue
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional): Security
Max CVSS v3 score: 7 (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H)
requate: Patch_Available+


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Arvid Requate univentionstaff 2017-12-20 21:54:41 CET
Upstream Debian package version 1:4.3.3-2+deb8u9 fixes these issues:

* A vulnerability in OpenOffice's PPT file parser before 4.1.4, and specifically in PPTStyleSheet, allows attackers to craft malicious documents that cause denial of service (memory corruption and application crash) potentially resulting in arbitrary code execution. (CVE-2017-12607)

* A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in ImportOldFormatStyles, allows attackers to craft malicious documents that cause denial of service (memory corruption and application crash) potentially resulting in arbitrary code execution. (CVE-2017-12608)
Comment 1 Philipp Hahn univentionstaff 2018-01-25 10:59:39 CET
Mass-import from Debian-Security:
  python -m univention.repong.^Cbmirror -s jessie -r 4.2-3 --override=$HOME/REPOS/repo-ng/mirror/update_ucs42_mirror_from_debian.yml --errata=doc/errata --sql --process=ALL -vvvv --now=201801211553

YAML: git:bd6159834a..449aa5a7cf
Comment 2 Philipp Hahn univentionstaff 2018-02-19 14:47:47 CET
e0fab0eacb Bug #45916 libreoffice: Add CVE-2018-6871
Comment 3 Philipp Hahn univentionstaff 2018-04-23 09:56:12 CEST
[4.2-3] b9598426d8 Bug #45916: libreoffice 1:4.3.3-2+deb8u11
Comment 4 Quality Assurance univentionstaff 2018-05-04 16:56:06 CEST
--- mirror/ftp/4.2/unmaintained/4.2-2/source/libreoffice_4.3.3-2+deb8u7.dsc
+++ apt/ucs_4.2-0-errata4.2-3/source/libreoffice_4.3.3-2+deb8u11.dsc
@@ -1,3 +1,29 @@
+1:4.3.3-2+deb8u11 [Wed, 18 Apr 2018 16:50:25 +0200] Rene Engelhard <rene@debian.org>:
+
+  * debian/patches/CVE-2018-10119.diff,
+    debian/patches/CVE-2018-10120.diff: as name says...
+
+1:4.3.3-2+deb8u10 [Sun, 11 Feb 2018 13:13:11 +0100] Rene Engelhard <rene@debian.org>:
+
+  * debian/patches/WEBSERVICE-only-http-and-https.diff: backport; as name says.
+    fix for "Remote arbitrary file disclosure vulnerability via WEBSERVICE
+    formula" (CVE-2018-1055 / CVE-2018-6871)
+  * debian/patches/layout-footnote-use-after-free.diff: add; as name says.
+    possible patch for iDefense V-mct3ei5wml
+
+1:4.3.3-2+deb8u9 [Mon, 06 Nov 2017 07:07:31 +0100] Rene Engelhard <rene@debian.org>:
+
+  * debian/patches/CVE-2017-1260{7,8}.diff: don't create empty test files
+  * debian/patches/CVE-2017-12608.diff: remove filters-test.cxx hunk
+
+1:4.3.3-2+deb8u8 [Fri, 03 Nov 2017 16:32:54 +0100] Rene Engelhard <rene@debian.org>:
+
+  * debian/rules:
+    - make i386 make check notfatal for now given the i386 Java Stack Clash
+      regression
+  * debian/patches/CVE-2017-12607.diff, debian/patches/CVE-2017-12608.diff.
+    debian/patches/series: apply patches for above CVEs
+
 1:4.3.3-2+deb8u7 [Mon, 24 Apr 2017 19:43:52 +0200] Rene Engelhard <rene@debian.org>:
 
   * debian/patches/CVE-2017-7870.diff: fix CVE-2017-7870
Comment 5 Arvid Requate univentionstaff 2018-05-07 16:03:38 CEST
* No UCS specific patches
* Comparison to previously shipped version ok
* Installation Ok
* Advisory Ok
Comment 6 Arvid Requate univentionstaff 2018-05-08 14:56:41 CEST
<http://errata.software-univention.de/ucs/4.2/351.html>