Stay Secure with the Latest Linux Advisories

security advisorybuffer overflowopenSUSE

openSUSE 12.2: SU-2012:1061-1 Important: Calligra Buffer Overflow

An update that fixes one vulnerability is now available. An update that fixes one vulnerability is now available. An update that fixes one vulnerability is now available.. openSUSE Security Update: calligra: security and bugfix update. ______________________________________________________________________________ Announcement ID: openSUSE-SU-2012:1061-1 Rating: important References: #774534 Cross-References: CVE-2012-3456 Affected Products: openSUSE 12.2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: Fix buffer overflow in MS Word ODF filter among other non-security related bugs. Also a version update to 2.4.3 happened: * Words: - Always show vertical scroll bar to avoid race condition (kde#301076) - Do not save with an attribue that makes LibreOffice and OpenOffice crash (kde#298689 ) * Kexi: - Fixed import from csv when “Start at Line” value changed (kde#302209) - Set limit to 255 characters for Text type (VARCHAR) (kde#301277 and 301136) + - Remove limits for Text data type, leave as option (kde#301277) - Fixed data saving when focus policy for one of widgets is NoFocus (kde#301109) * Krita: - Read and set the resolution for psd images * Charts: - Fix load/save styles of all shapes (title,subtitle,axistitles,footer,etc.) - Lines in the chart should be displayed (kde#271771) - Combined Bar and Line Charts only show bars (Trendlines not supported) (kde#288537) - Load/save chart type for each dataset (kde#271771 and 288537) Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 12.2: zypper in -t patch openSUSE-2012-533 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 12.2 (i586 x86_64): calligra-2.4.3-2.4.1 calligra-braindump-2.4.3-2.4.1 calligra-braindump-debuginfo-2.4.3-2.4.1 calligra-debuginfo-2.4.3-2.4.1 calligra-debugsource-2.4.3-2.4.1 calligra-devel-2.4.3-2.4.1 calligra-flow-2.4.3-2.4.1 calligra-flow-debuginfo-2.4.3-2.4.1 calligra-karbon-2.4.3-2.4.1 calligra-karbon-debuginfo-2.4.3-2.4.1 calligra-kexi-2.4.3-2.4.1 calligra-kexi-debuginfo-2.4.3-2.4.1 calligra-kexi-mssql-driver-2.4.3-2.4.1 calligra-kexi-mssql-driver-debuginfo-2.4.3-2.4.1 calligra-kexi-mysql-driver-2.4.3-2.4.1 calligra-kexi-mysql-driver-debuginfo-2.4.3-2.4.1 calligra-kexi-postgresql-driver-2.4.3-2.4.1 calligra-kexi-postgresql-driver-debuginfo-2.4.3-2.4.1 calligra-kexi-spreadsheet-import-2.4.3-2.4.1 calligra-kexi-spreadsheet-import-debuginfo-2.4.3-2.4.1 calligra-kexi-xbase-driver-2.4.3-2.4.1 calligra-kexi-xbase-driver-debuginfo-2.4.3-2.4.1 calligra-krita-2.4.3-2.4.1 calligra-krita-debuginfo-2.4.3-2.4.1 calligra-kthesaurus-2.4.3-2.4.1 calligra-kthesaurus-debuginfo-2.4.3-2.4.1 calligra-plan-2.4.3-2.4.1 calligra-plan-debuginfo-2.4.3-2.4.1 calligra-sheets-2.4.3-2.4.1 calligra-sheets-debuginfo-2.4.3-2.4.1 calligra-stage-2.4.3-2.4.1 calligra-stage-debuginfo-2.4.3-2.4.1 calligra-tools-2.4.3-2.4.1 calligra-tools-debuginfo-2.4.3-2.4.1 calligra-words-2.4.3-2.4.1 calligra-words-debuginfo-2.4.3-2.4.1 - openSUSE 12.2 (noarch): calligra-doc-2.4.3-2.4.1 References: https://www.suse.com/security/cve/CVE-2012-3456.html . A crucial enhancement addressing a memory leak in calligra for openSUSE. Maintain safety by applying the newest security update.. openSUSE Security, Calligra Buffer Overflow, Software Patch, Security Update. . Severity: Important. LinuxSecurity.com Team

Aug 30, 2012 •Important OpenSUSE