Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
almalinuxAlmaLinuxALSA-2023:0089
HistoryJan 12, 2023 - 12:00 a.m.

Moderate: libreoffice security update

2023-01-1200:00:00
errata.almalinux.org
10
libreoffice
security update
cves

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

61.5%

JSON

LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite.

Security Fix(es):

  • libreoffice: Macro URL arbitrary script execution (CVE-2022-3140)
  • libreoffice: Execution of Untrusted Macros Due to Improper Certificate Validation (CVE-2022-26305)
  • libreoffice: Static Initialization Vector Allows to Recover Passwords for Web Connections Without Knowing the Master Password (CVE-2022-26306)
  • libreoffice: Weak Master Keys (CVE-2022-26307)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
almalinux8noarchautocorr-it< 6.4.7.2-12.el8_7.almaautocorr-it-6.4.7.2-12.el8_7.alma.noarch.rpm
almalinux8noarchautocorr-pl< 6.4.7.2-12.el8_7.almaautocorr-pl-6.4.7.2-12.el8_7.alma.noarch.rpm
almalinux8noarchautocorr-ja< 6.4.7.2-12.el8_7.almaautocorr-ja-6.4.7.2-12.el8_7.alma.noarch.rpm
almalinux8noarchlibreoffice-ure-common< 6.4.7.2-12.el8_7.almalibreoffice-ure-common-6.4.7.2-12.el8_7.alma.noarch.rpm
almalinux8noarchautocorr-ru< 6.4.7.2-12.el8_7.almaautocorr-ru-6.4.7.2-12.el8_7.alma.noarch.rpm
almalinux8noarchautocorr-bg< 6.4.7.2-12.el8_7.almaautocorr-bg-6.4.7.2-12.el8_7.alma.noarch.rpm
almalinux8noarchautocorr-ro< 6.4.7.2-12.el8_7.almaautocorr-ro-6.4.7.2-12.el8_7.alma.noarch.rpm
almalinux8noarchautocorr-fr< 6.4.7.2-12.el8_7.almaautocorr-fr-6.4.7.2-12.el8_7.alma.noarch.rpm
almalinux8noarchautocorr-sr< 6.4.7.2-12.el8_7.almaautocorr-sr-6.4.7.2-12.el8_7.alma.noarch.rpm
almalinux8noarchautocorr-hr< 6.4.7.2-12.el8_7.almaautocorr-hr-6.4.7.2-12.el8_7.alma.noarch.rpm
Rows per page:
1-10 of 2601

Related

nessus 26
almalinux 1
osv 8
redhat 2
rocky 2
oraclelinux 2
openvas 13
kaspersky 2
ubuntu 2
suse 1
debian 2
thn 1
freebsd 1
ubuntucve 4
redhatcve 4
debiancve 4
cve 6
cnvd 2
nvd 6
prion 6
alpinelinux 4
veracode 4
cvelist 6
zdi 1
fedora 1
mageia 1
gentoo 1
nessus
nessus
Oracle Linux 8 : libreoffice (ELSA-2023-0089)
2023-01-18 00:00:00
RHEL 8 : libreoffice (RHSA-2023:0089)
2023-01-12 00:00:00
Oracle Linux 9 : libreoffice (ELSA-2023-0304)
2023-01-24 00:00:00
almalinux
almalinux
Moderate: libreoffice security update
2023-01-23 00:00:00
osv
osv
Moderate: libreoffice security update
2023-01-23 00:00:00
Moderate: libreoffice security update
2023-01-12 08:25:20
Moderate: libreoffice security update
2023-01-23 14:29:58
redhat
redhat
(RHSA-2023:0304) Moderate: libreoffice security update
2023-01-23 14:29:58
(RHSA-2023:0089) Moderate: libreoffice security update
2023-01-12 08:25:20
rocky
rocky
libreoffice security update
2023-01-12 08:25:20
libreoffice security update
2023-01-23 14:29:58
oraclelinux
oraclelinux
libreoffice security update
2023-01-24 00:00:00
libreoffice security update
2023-01-18 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5661-1)
2022-10-07 00:00:00
Libre Office 7.2.x < 7.2.7, 7.3.x < 7.3.3 Multiple Vulnerabilities (Jul 2022) - Windows
2022-07-27 00:00:00
Libre Office 7.2.x < 7.2.7, 7.3.x < 7.3.3 Multiple Vulnerabilities (Jul 2022) - Linux
2022-07-28 00:00:00
kaspersky
kaspersky
KLA12593 Multiple vulnerabilities in LibreOffice
2022-07-25 00:00:00
KLA20006 RCE vulnerability in LibreOffice
2022-10-11 00:00:00
ubuntu
ubuntu
LibreOffice vulnerabilities
2022-10-06 00:00:00
LibreOffice vulnerabilities
2022-10-20 00:00:00
suse
suse
Security update for libreoffice (important)
2022-10-19 00:00:00
debian
debian
[SECURITY] [DLA 3368-1] libreoffice security update
2023-03-26 21:05:00
[SECURITY] [DSA 5252-1] libreoffice security update
2022-10-12 17:35:07
thn
thn
LibreOffice Releases Software Update to Patch 3 New Vulnerabilities
2022-07-28 06:41:00
freebsd
freebsd
Apache OpenOffice -- master password vulnerabilities
2022-02-25 00:00:00
ubuntucve
ubuntucve
CVE-2022-26306
2022-07-25 00:00:00
CVE-2022-26305
2022-07-25 00:00:00
CVE-2022-26307
2022-07-25 00:00:00
redhatcve
redhatcve
CVE-2022-26305
2022-08-16 09:38:21
CVE-2022-26307
2022-08-16 09:38:25
CVE-2022-26306
2022-08-16 09:38:21
debiancve
debiancve
CVE-2022-26307
2022-07-25 15:15:09
CVE-2022-26306
2022-07-25 15:15:09
CVE-2022-26305
2022-07-25 15:15:09
cve
cve
CVE-2022-26307
2022-07-25 15:15:09
CVE-2022-26305
2022-07-25 15:15:09
CVE-2022-26306
2022-07-25 15:15:09
cnvd
cnvd
LibreOffice Trust Management Issue Vulnerability (CNVD-2022-54898)
2022-07-27 00:00:00
LibreOffice encryption problem vulnerability
2022-07-27 00:00:00
nvd
nvd
CVE-2022-26307
2022-07-25 15:15:09
CVE-2022-26305
2022-07-25 15:15:09
CVE-2022-26306
2022-07-25 15:15:09
prion
prion
Design/Logic Flaw
2022-07-25 15:15:00
Input validation
2022-07-25 15:15:00
Design/Logic Flaw
2022-07-25 15:15:00
alpinelinux
alpinelinux
CVE-2022-26307
2022-07-25 15:15:09
CVE-2022-26305
2022-07-25 15:15:09
CVE-2022-26306
2022-07-25 15:15:09
veracode
veracode
Information Disclosure
2022-08-10 11:52:02
Improper Certificate Validation
2022-08-10 11:45:43
Insecure Cryptographic Function
2022-08-10 11:51:50
cvelist
cvelist
CVE-2022-26305 Execution of Untrusted Macros Due to Improper Certificate Validation
2022-07-25 00:00:00
CVE-2022-26307 Weak Master Keys
2022-07-25 00:00:00
CVE-2022-26306 Execution of Untrusted Macros Due to Improper Certificate Validation
2022-07-25 00:00:00
zdi
zdi
LibreOffice Exposed Dangerous Function Remote Code Execution Vulnerability
2022-10-21 00:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: libreoffice-7.2.7.2-2.fc35
2022-10-23 09:13:01
mageia
mageia
Updated libreoffice packages fix security vulnerability
2022-10-29 02:32:51
gentoo
gentoo
LibreOffice: Arbitrary Code Execution
2022-12-19 00:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

61.5%

JSON
Related for ALSA-2023:0089
nessus26almalinux1osv8redhat2rocky2oraclelinux2openvas13kaspersky2ubuntu2suse1debian2thn1freebsd1ubuntucve4redhatcve4debiancve4cve6cnvd2nvd6prion6alpinelinux4veracode4cvelist6zdi1fedora1mageia1gentoo1