Mageia 2020-0258: libreoffice security update

    Date 12 Jun 2020
    269
    Posted By LinuxSecurity Advisories
    This update increase Libreoffice to version 6.4.4.2 It fixes Security issues and add kf5 support. If LibreOffice has an encrypted document open and crashes, that document is auto-saved encrypted. On restart, LibreOffice offers
    MGASA-2020-0258 - Updated libreoffice packages fix security vulnerability
    
    Publication date: 12 Jun 2020
    URL: https://advisories.mageia.org/MGASA-2020-0258.html
    Type: security
    Affected Mageia releases: 7
    CVE: CVE-2020-12801
    
    This update increase Libreoffice to version 6.4.4.2
    It fixes Security issues and add kf5 support.
    
    If LibreOffice has an encrypted document open and crashes, that
    document is auto-saved encrypted. On restart, LibreOffice offers
    to restore the document and prompts for the password to decrypt it.
    If the recovery is successful, and if the file format of the recovered
    document was not LibreOffice's default ODF file format, then affected
    versions of LibreOffice default that subsequent saves of the document
    are unencrypted.
    
    This may lead to a user accidentally saving a MSOffice file format
    document unencrypted while believing it to be encrypted.
    
    In the fixed versions, encrypted recovered MSOffice format documents
    default to encrypted save.
    
    References:
    - https://bugs.mageia.org/show_bug.cgi?id=26641
    - https://www.libreoffice.org/about-us/security/advisories/cve-2020-12801/
    - https://wiki.documentfoundation.org/ReleaseNotes/6.3
    - https://wiki.documentfoundation.org/ReleaseNotes/6.4
    - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12801
    
    SRPMS:
    - 7/core/libabw-0.1.3-1.mga7
    - 7/core/libcdr-0.1.6-1.mga7
    - 7/core/libmwaw-0.3.16-1.mga7
    - 7/core/libvisio-0.1.7-1.mga7
    - 7/core/libwps-0.4.11-1.mga7
    - 7/core/libixion-0.15.0-6.mga7
    - 7/core/mdds-1.5.0-1.mga7
    - 7/core/fmt-6.2.1-1.1.mga7
    - 7/core/spdlog-1.6.0-1.mga7
    - 7/core/qr-code-generator-1.5.0-6.mga7
    - 7/core/libreoffice-6.4.4.2-1.mga7
    - 7/core/celestia-1.7.0-0.20190423git.920a0c8.2.1.mga7
    - 7/core/kodi-18.7-1.1.mga7
    

    LinuxSecurity Poll

    If you are using full-disk encryption: are you concerned about the resulting performance hit?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 2 answer(s).
    /main-polls/34-if-you-are-using-full-disk-encryption-are-you-concerned-about-the-resulting-performance-hit?task=poll.vote&format=json
    34
    radio
    [{"id":"120","title":"Yes","votes":"14","type":"x","order":"1","pct":60.87,"resources":[]},{"id":"121","title":"No ","votes":"9","type":"x","order":"2","pct":39.13,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
    bottom 200

    Please enable / Bitte aktiviere JavaScript!
    Veuillez activer / Por favor activa el Javascript![ ? ]

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.