Alerts This Week
Warning Icon 1 1,109
Alerts This Week
Warning Icon 1 1,109

Ubuntu: 6877-1 Critical: LibreOffice Information Exposure Risk

ubuntu
Calendar Grey July 4, 2024
Dist Ubuntu Esm H88
The Ubuntu Security Notice USN-6878-1 outlines a risk in LibreOffice that might lead to the unintentional disclosure of confidential data.
LibreOffice could be made to expose sensitive information.

Summary

LibreOffice could be made to expose sensitive information.

Software Description:

- libreoffice: Office productivity suite

Details:

It was discovered that LibreOffice incorrectly performed TLS certificate

verification when the LibreOfficeKit library is being used by third-party

components. A remote attacker could possibly use this issue to obtain

sensitive information.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 24.04 LTS
   libreoffice                     4:24.2.4-0ubuntu0.24.04.2

Ubuntu 23.10
   libreoffice                     4:7.6.7-0ubuntu0.23.10.3

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-6877-1

CVE-2024-5261

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-6877-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here