Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE Linux: 2020:0121-1 Moderate: LibreOffice Macro Bypass Threat

suse
Calendar Grey January 17, 2020
Dist Suse Esm H88
SUSE Security Patch for LibreOffice addresses a script vulnerability, improving user protection and software reliability.
An update that solves one vulnerability and has two fixes is now available

Summary

This update libreoffice to version 6.3.3 fixes the following issues: LibreOffice was updated to 6.3.3 (jsc#SLE-8705), bringing many bug and stability fixes. More information for the 6.3 release at: https://wiki.documentfoundation.org/ReleaseNotes/6.3 Security issue fixed: - CVE-2019-9853: Fixed an issue where by executing macros, the security settings could have been bypassed (bsc#1152684). Other issues addressed: - Dropped disable-kde4 switch, since it is no longer known by configure - Disabled gtk2 because it will be removed in future releases - librelogo is now a standalone sub-package (bsc#1144522). - Partial fixes for an issue where Table(s) from DOCX showed wrong position or color (bsc#1061210). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods

Topics%20covered

Topics Covered

security advisory moderate update SUSE Linux LibreOffice macros

References

#1061210 #1144522 #1152684

Cross- CVE-2019-9853

Affected Products:

SUSE Linux Enterprise Workstation Extension 15-SP1

SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1

https://www.suse.com/security/cve/CVE-2019-9853.html

https://bugzilla.suse.com/1061210

https://bugzilla.suse.com/1144522

https://bugzilla.suse.com/1152684

Announcement ID: SUSE-SU-2020:0121-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate update SUSE Linux LibreOffice macros

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here