Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SUSE Linux: 2024:3576-1 important: libreoffice TLS certificate issue

suse
Calendar Grey October 10, 2024
Dist Suse Esm H88
Critical security enhancements for LibreOffice addressing major vulnerabilities, newly added features, and detailed installation guidelines.
* bsc#1047218 * bsc#1202273 * bsc#1226975 * bsc#1229589 * jsc#PED-10362

Summary

## This update for libreoffice fixes the following issues: libreoffice was updated to version 24.8.1.2 (jsc#PED-10362): * Release notes: * https://wiki.documentfoundation.org/Releases/24.8.0/RC1 and * https://wiki.documentfoundation.org/Releases/24.8.0/RC2 and * https://wiki.documentfoundation.org/Releases/24.8.0/RC3 * Security issues fixed: * CVE-2024-526: Fixed TLS certificates are not properly verified when utilizing LibreOfficeKit (bsc#1226975) * Other bugs fixed: * Use system curl instead of the bundled one on systems greater than or equal to SLE15 (bsc#1229589) * Use the new clucene function, which makes index files reproducible (bsc#1047218) * Update bundled dependencies: * Java-Websocket updated from 1.5.4 to 1.5.6 * boost updated from 1.82.0 to 1.85.0

Topics%20covered

Topics Covered

security advisory software patch important SUSE LibreOffice TLS certificate CVE-2024-5261

References

* bsc#1047218

* bsc#1202273

* bsc#1226975

* bsc#1229589

* jsc#PED-10362

Cross-

* CVE-2024-5261

CVSS scores:

* CVE-2024-5261 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products:

* SUSE Linux Enterprise High Performance Computing 12 SP5

* SUSE Linux Enterprise Server 12 SP5

* SUSE Linux Enterprise Server for SAP Applications 12 SP5

* SUSE Linux Enterprise Software Development Kit 12 SP5

* SUSE Linux Enterprise Workstation Extension 12 12-SP5

An update that solves one vulnerability, contains one feature and has three

security fixes can now be installed.

##

* https://www.suse.com/security/cve/CVE-2024-5261.html

* https://bugzilla.suse.com/show_bug.cgi?id=1047218

* https://bugzilla.suse.com/show_bug.cgi?id=1202273

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2024:3576-1
Release Date: 2024-10-10T04:15:27Z
Rating: important

Topics%20covered

Topics Covered

security advisory software patch important SUSE LibreOffice TLS certificate CVE-2024-5261

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here