Alerts This Week
Warning Icon 1 664
Alerts This Week
Warning Icon 1 664

openSUSE Leap 15.0: 2018:3796-1 Moderate: LibreOffice Info Disclosure

opensuse
Calendar Grey November 17, 2018
Dist Opensuse Esm H88
A revision for LibreOffice and its associated libraries rectifies a moderate risk vulnerability through a security announcement for openSUSE.
An update that solves one vulnerability and has 8 fixes is now available.

Description

This update for LibreOffice, libepubgen, liblangtag, libmwaw,

libnumbertext, libstaroffice, libwps, myspell-dictionaries, xmlsec1 fixes

the following issues:

LibreOffice was updated to 6.1.3.2 (fate#326624) and contains new features

and lots of bugfixes:

The full changelog can be found on:

https://wiki.documentfoundation.org/ReleaseNotes/6.1

Bugfixes:

- bsc#1095639 Exporting to PPTX results in vertical labels being shown

horizontally

- bsc#1098891 Table in PPTX misplaced and partly blue

- bsc#1088263 Labels in chart change (from white and other colors) to

black when saving as PPTX

- bsc#1095601 Exporting to PPTX shifts arrow shapes quite a bit

- Add more translations:

* Belarusian

* Bodo

* Dogri

* Frisian

* Gaelic

* Paraguayan_Guaran

* Upper_Sorbian

* Konkani

* Kashmiri

* Luxembourgish

* Monglolian

* Manipuri

* Burnese

* Occitan

* Kinyarwanda

...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory moderate severity information disclosure openSUSE LibreOffice dependency libraries

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 15.0:

zypper in -t patch openSUSE-2018-1417=1

Package List

- openSUSE Leap 15.0 (i586 x86_64):

libxmlsec1-1-1.2.26-lp150.2.3.1

libxmlsec1-1-debuginfo-1.2.26-lp150.2.3.1

libxmlsec1-gcrypt1-1.2.26-lp150.2.3.1

libxmlsec1-gcrypt1-debuginfo-1.2.26-lp150.2.3.1

libxmlsec1-gnutls1-1.2.26-lp150.2.3.1

libxmlsec1-gnutls1-debuginfo-1.2.26-lp150.2.3.1

libxmlsec1-nss1-1.2.26-lp150.2.3.1

libxmlsec1-nss1-debuginfo-1.2.26-lp150.2.3.1

libxmlsec1-openssl1-1.2.26-lp150.2.3.1

libxmlsec1-openssl1-debuginfo-1.2.26-lp150.2.3.1

myspell-dictionaries-20181025-lp150.2.6.1

myspell-lightproof-en-20181025-lp150.2.6.1

myspell-lightproof-hu_HU-20181025-lp150.2.6.1

myspell-lightproof-pt_BR-20181025-lp150.2.6.1

myspell-lightproof-ru_RU-20181025-lp150.2.6.1

xmlsec1-1.2.26-lp150.2.3.1

xmlsec1-debuginfo-1.2.26-lp150.2.3.1

xmlsec1-debugsource-1.2.26-lp150.2.3.1

xmlsec1-devel-1.2.26-lp150.2.3.1

xmlsec1-gcrypt-devel-1.2.26-lp150.2.3.1

xmlsec1-gnutls-devel-1.2.26-lp150.2.3.1

xmlsec1-nss-devel-1.2.26-lp150.2.3.1

xmlsec1-openssl-devel-1.2.26-lp150.2.3.1

- openSUSE Leap 15.0 (noarch):

libepubgen-devel-doc-0.1.1-...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2018-10583.html

https://bugzilla.suse.com/1050305

https://bugzilla.suse.com/1088263

https://bugzilla.suse.com/1091606

https://bugzilla.suse.com/1094779

https://bugzilla.suse.com/1095601

https://bugzilla.suse.com/1095639

https://bugzilla.suse.com/1096360

https://bugzilla.suse.com/1098891

https://bugzilla.suse.com/1104876

--

Announcement ID: openSUSE-SU-2018:3796-1
Rating: moderate
Affected Products: openSUSE Leap 15.0 le.

Topics%20covered

Topics Covered

security advisory moderate severity information disclosure openSUSE LibreOffice dependency libraries

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here