Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

SUSE: 2019:2231-1 Important: LibreOffice Security Update Details

suse
Calendar Grey August 28, 2019
Dist Suse Esm H88
This critical Debian patch tackles various vulnerabilities in the apache software suite. Find comprehensive information and guidance on applying the update.
An update that solves 5 vulnerabilities and has one errata is now available

Summary

This update for libreoffice fixes the following issues: Security issues fixed: - CVE-2019-9849: Disabled fetching remote bullet graphics in 'stealth mode' (bsc#1141861). - CVE-2019-9848: Fixed an arbitrary script execution via LibreLogo (bsc#1141862). - CVE-2019-9851: Fixed LibreLogo global-event script execution issue (bsc#1146105). - CVE-2019-9852: Fixed insufficient URL encoding flaw in allowed script location check (bsc#1146107). - CVE-2019-9850: Fixed insufficient URL validation that allowed LibreLogo script execution (bsc#1146098). Non-security issue fixed: - SmartArt: Basic rendering of Trapezoid List (bsc#1133534) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".

Topics%20covered

Topics Covered

security advisory update important SUSE Linux libreoffice

References

#1133534 #1141861 #1141862 #1146098 #1146105

#1146107

Cross- CVE-2019-9848 CVE-2019-9849 CVE-2019-9850

CVE-2019-9851 CVE-2019-9852

Affected Products:

SUSE Linux Enterprise Workstation Extension 15

https://www.suse.com/security/cve/CVE-2019-9848.html

https://www.suse.com/security/cve/CVE-2019-9849.html

https://www.suse.com/security/cve/CVE-2019-9850.html

https://www.suse.com/security/cve/CVE-2019-9851.html

https://www.suse.com/security/cve/CVE-2019-9852.html

https://bugzilla.suse.com/1133534

https://bugzilla.suse.com/1141861

https://bugzilla.suse.com/1141862

https://bugzilla.suse.com/1146098

https://bugzilla.suse.com/1146105

https://bugzilla.suse.com/1146107

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2019:2231-1
Rating: important

Topics%20covered

Topics Covered

security advisory update important SUSE Linux libreoffice

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here