Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

openSUSE 12.2: SU-2012:1061-1 Important: Calligra Buffer Overflow

opensuse
Calendar Grey August 30, 2012
Dist Opensuse Esm H88
A crucial enhancement addressing a memory leak in calligra for openSUSE. Maintain safety by applying the newest security update.
An update that fixes one vulnerability is now available

Description

Fix buffer overflow in MS Word ODF filter among other

non-security related bugs.

Also a version update to 2.4.3 happened:

* Words:

- Always show vertical scroll bar to avoid race

condition (kde#301076)

- Do not save with an attribue that makes LibreOffice

and OpenOffice crash (kde#298689 )

* Kexi:

- Fixed import from csv when “Start at Line” value

changed (kde#302209)

- Set limit to 255 characters for Text type (VARCHAR)

(kde#301277 and 301136)

+ - Remove limits for Text data type, leave as option

(kde#301277)

- Fixed data saving when focus policy for one of

widgets is NoFocus (kde#301109)

* Krita:

- Read and set the resolution for psd images

* Charts:

- Fix load/save styles of all shapes

(title,subtitle,axistitles,footer,etc.)

- Lines in the chart should be displayed (kde#271771)

- Combined Bar and Line Charts only show bars (Trendlines not supported) (kde#288537)

- Load/save chart type for...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory buffer overflow openSUSE patch instructions calligra update

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE 12.2:

zypper in -t patch openSUSE-2012-533

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE 12.2 (i586 x86_64):

calligra-2.4.3-2.4.1

calligra-braindump-2.4.3-2.4.1

calligra-braindump-debuginfo-2.4.3-2.4.1

calligra-debuginfo-2.4.3-2.4.1

calligra-debugsource-2.4.3-2.4.1

calligra-devel-2.4.3-2.4.1

calligra-flow-2.4.3-2.4.1

calligra-flow-debuginfo-2.4.3-2.4.1

calligra-karbon-2.4.3-2.4.1

calligra-karbon-debuginfo-2.4.3-2.4.1

calligra-kexi-2.4.3-2.4.1

calligra-kexi-debuginfo-2.4.3-2.4.1

calligra-kexi-mssql-driver-2.4.3-2.4.1

calligra-kexi-mssql-driver-debuginfo-2.4.3-2.4.1

calligra-kexi-mysql-driver-2.4.3-2.4.1

calligra-kexi-mysql-driver-debuginfo-2.4.3-2.4.1

calligra-kexi-postgresql-driver-2.4.3-2.4.1

calligra-kexi-postgresql-driver-debuginfo-2.4.3-2.4.1

calligra-kexi-spreadsheet-import-2.4.3-2.4.1

calligra-kexi-spreadsheet-import-debuginfo-2.4.3-2.4.1

calligra-kexi-xbase-driver-2.4.3-2.4.1

calligra-kexi-xbase-driver-debuginfo-2.4.3-2.4.1

calligra-krita-2.4.3-2.4.1

calligra-krita-debuginfo-2.4.3-2.4.1

calligra-kthesaurus-2.4.3-2.4.1

calligra-kthesaurus-debuginfo-2.4.3-2.4.1

calligra-plan-2.4.3-2....

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2012-3456.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2012:1061-1
Rating: important
Affected Products: openSUSE 12.2 .

Topics%20covered

Topics Covered

security advisory buffer overflow openSUSE patch instructions calligra update

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here