CentOS ProjectCESA-2018:0517autocorr, libreoffice security update
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.593 Medium
EPSS
Percentile
97.8%
CentOS Errata and Security Advisory CESA-2018:0517
LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite.
Security Fix(es):
- libreoffice: Remote arbitrary file disclosure vulnerability via WEBSERVICE formula (CVE-2018-6871)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2018-March/084964.html
Affected packages:
autocorr-af
autocorr-bg
autocorr-ca
autocorr-cs
autocorr-da
autocorr-de
autocorr-en
autocorr-es
autocorr-fa
autocorr-fi
autocorr-fr
autocorr-ga
autocorr-hr
autocorr-hu
autocorr-is
autocorr-it
autocorr-ja
autocorr-ko
autocorr-lb
autocorr-lt
autocorr-mn
autocorr-nl
autocorr-pl
autocorr-pt
autocorr-ro
autocorr-ru
autocorr-sk
autocorr-sl
autocorr-sr
autocorr-sv
autocorr-tr
autocorr-vi
autocorr-zh
libreoffice
libreoffice-base
libreoffice-bsh
libreoffice-calc
libreoffice-core
libreoffice-draw
libreoffice-emailmerge
libreoffice-filters
libreoffice-gdb-debug-support
libreoffice-glade
libreoffice-graphicfilter
libreoffice-headless
libreoffice-impress
libreoffice-langpack-af
libreoffice-langpack-ar
libreoffice-langpack-as
libreoffice-langpack-bg
libreoffice-langpack-bn
libreoffice-langpack-ca
libreoffice-langpack-cs
libreoffice-langpack-cy
libreoffice-langpack-da
libreoffice-langpack-de
libreoffice-langpack-dz
libreoffice-langpack-el
libreoffice-langpack-en
libreoffice-langpack-es
libreoffice-langpack-et
libreoffice-langpack-eu
libreoffice-langpack-fi
libreoffice-langpack-fr
libreoffice-langpack-ga
libreoffice-langpack-gl
libreoffice-langpack-gu
libreoffice-langpack-he
libreoffice-langpack-hi
libreoffice-langpack-hr
libreoffice-langpack-hu
libreoffice-langpack-it
libreoffice-langpack-ja
libreoffice-langpack-kn
libreoffice-langpack-ko
libreoffice-langpack-lt
libreoffice-langpack-mai
libreoffice-langpack-ml
libreoffice-langpack-mr
libreoffice-langpack-ms
libreoffice-langpack-nb
libreoffice-langpack-nl
libreoffice-langpack-nn
libreoffice-langpack-nr
libreoffice-langpack-nso
libreoffice-langpack-or
libreoffice-langpack-pa
libreoffice-langpack-pl
libreoffice-langpack-pt-BR
libreoffice-langpack-pt-PT
libreoffice-langpack-ro
libreoffice-langpack-ru
libreoffice-langpack-sk
libreoffice-langpack-sl
libreoffice-langpack-sr
libreoffice-langpack-ss
libreoffice-langpack-st
libreoffice-langpack-sv
libreoffice-langpack-ta
libreoffice-langpack-te
libreoffice-langpack-th
libreoffice-langpack-tn
libreoffice-langpack-tr
libreoffice-langpack-ts
libreoffice-langpack-uk
libreoffice-langpack-ur
libreoffice-langpack-ve
libreoffice-langpack-xh
libreoffice-langpack-zh-Hans
libreoffice-langpack-zh-Hant
libreoffice-langpack-zu
libreoffice-librelogo
libreoffice-math
libreoffice-nlpsolver
libreoffice-officebean
libreoffice-ogltrans
libreoffice-opensymbol-fonts
libreoffice-pdfimport
libreoffice-pyuno
libreoffice-rhino
libreoffice-sdk
libreoffice-sdk-doc
libreoffice-ure
libreoffice-wiki-publisher
libreoffice-writer
libreoffice-xsltfilter
Upstream details at:
https://access.redhat.com/errata/RHSA-2018:0517
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| CentOS | 6 | noarch | autocorr-af | < 4.3.7.2-2.el6_9.2 | autocorr-af-4.3.7.2-2.el6_9.2.noarch.rpm |
| CentOS | 6 | noarch | autocorr-bg | < 4.3.7.2-2.el6_9.2 | autocorr-bg-4.3.7.2-2.el6_9.2.noarch.rpm |
| CentOS | 6 | noarch | autocorr-ca | < 4.3.7.2-2.el6_9.2 | autocorr-ca-4.3.7.2-2.el6_9.2.noarch.rpm |
| CentOS | 6 | noarch | autocorr-cs | < 4.3.7.2-2.el6_9.2 | autocorr-cs-4.3.7.2-2.el6_9.2.noarch.rpm |
| CentOS | 6 | noarch | autocorr-da | < 4.3.7.2-2.el6_9.2 | autocorr-da-4.3.7.2-2.el6_9.2.noarch.rpm |
| CentOS | 6 | noarch | autocorr-de | < 4.3.7.2-2.el6_9.2 | autocorr-de-4.3.7.2-2.el6_9.2.noarch.rpm |
| CentOS | 6 | noarch | autocorr-en | < 4.3.7.2-2.el6_9.2 | autocorr-en-4.3.7.2-2.el6_9.2.noarch.rpm |
| CentOS | 6 | noarch | autocorr-es | < 4.3.7.2-2.el6_9.2 | autocorr-es-4.3.7.2-2.el6_9.2.noarch.rpm |
| CentOS | 6 | noarch | autocorr-fa | < 4.3.7.2-2.el6_9.2 | autocorr-fa-4.3.7.2-2.el6_9.2.noarch.rpm |
| CentOS | 6 | noarch | autocorr-fi | < 4.3.7.2-2.el6_9.2 | autocorr-fi-4.3.7.2-2.el6_9.2.noarch.rpm |
Related
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.593 Medium
EPSS
Percentile
97.8%