Lucene search

DebianDEBIAN:DSA-4519-1:C172C

HistorySep 08, 2019 - 9:18 p.m.

[SECURITY] [DSA 4519-1] libreoffice security update

2019-09-0821:18:01

lists.debian.org

122

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

9.1 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.3%

JSON

Debian Security Advisory DSA-4519-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
September 08, 2019 https://www.debian.org/security/faq

Package : libreoffice
CVE ID : CVE-2019-9854

It was discovered that the code fixes for LibreOffice to address
CVE-2019-9852 were not complete. Additional information can be found at
https://www.libreoffice.org/about-us/security/advisories/CVE-2019-9854/

For the oldstable distribution (stretch), this problem has been fixed
in version 1:5.2.7-1+deb9u11.

For the stable distribution (buster), this problem has been fixed in
version 1:6.1.5-3+deb10u4.

We recommend that you upgrade your libreoffice packages.

For the detailed security status of libreoffice please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libreoffice

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian10armellibreoffice-impress-dbgsym< 1:6.1.5-3+deb10u4libreoffice-impress-dbgsym_1:6.1.5-3+deb10u4_armel.deb
Debian10ppc64ellibreoffice-calc< 1:6.1.5-3+deb10u4libreoffice-calc_1:6.1.5-3+deb10u4_ppc64el.deb
Debian9i386libreoffice-officebean< 1:5.2.7-1+deb9u11libreoffice-officebean_1:5.2.7-1+deb9u11_i386.deb
Debian9armellibreoffice-evolution< 1:5.2.7-1+deb9u11libreoffice-evolution_1:5.2.7-1+deb9u11_armel.deb
Debian10i386libreoffice-core< 1:6.1.5-3+deb10u4libreoffice-core_1:6.1.5-3+deb10u4_i386.deb
Debian9mipslibreoffice-report-builder-bin-dbgsym< 1:5.2.7-1+deb9u11libreoffice-report-builder-bin-dbgsym_1:5.2.7-1+deb9u11_mips.deb
Debian8alllibreoffice-l10n-oc< 1:4.3.3-2+deb8u13libreoffice-l10n-oc_1:4.3.3-2+deb8u13_all.deb
Debian10mipsellibreoffice-avmedia-backend-vlc-dbgsym< 1:6.1.5-3+deb10u4libreoffice-avmedia-backend-vlc-dbgsym_1:6.1.5-3+deb10u4_mipsel.deb
Debian9i386libreoffice-avmedia-backend-gstreamer< 1:5.2.7-1+deb9u11libreoffice-avmedia-backend-gstreamer_1:5.2.7-1+deb9u11_i386.deb
Debian8amd64libreoffice-kde< 1:4.3.3-2+deb8u13libreoffice-kde_1:4.3.3-2+deb8u13_amd64.deb

OS	Version	Architecture	Package	Version	Filename
Debian	10	armel	libreoffice-impress-dbgsym	< 1:6.1.5-3+deb10u4	libreoffice-impress-dbgsym_1:6.1.5-3+deb10u4_armel.deb
Debian	10	ppc64el	libreoffice-calc	< 1:6.1.5-3+deb10u4	libreoffice-calc_1:6.1.5-3+deb10u4_ppc64el.deb
Debian	9	i386	libreoffice-officebean	< 1:5.2.7-1+deb9u11	libreoffice-officebean_1:5.2.7-1+deb9u11_i386.deb
Debian	9	armel	libreoffice-evolution	< 1:5.2.7-1+deb9u11	libreoffice-evolution_1:5.2.7-1+deb9u11_armel.deb
Debian	10	i386	libreoffice-core	< 1:6.1.5-3+deb10u4	libreoffice-core_1:6.1.5-3+deb10u4_i386.deb
Debian	9	mips	libreoffice-report-builder-bin-dbgsym	< 1:5.2.7-1+deb9u11	libreoffice-report-builder-bin-dbgsym_1:5.2.7-1+deb9u11_mips.deb
Debian	8	all	libreoffice-l10n-oc	< 1:4.3.3-2+deb8u13	libreoffice-l10n-oc_1:4.3.3-2+deb8u13_all.deb
Debian	10	mipsel	libreoffice-avmedia-backend-vlc-dbgsym	< 1:6.1.5-3+deb10u4	libreoffice-avmedia-backend-vlc-dbgsym_1:6.1.5-3+deb10u4_mipsel.deb
Debian	9	i386	libreoffice-avmedia-backend-gstreamer	< 1:5.2.7-1+deb9u11	libreoffice-avmedia-backend-gstreamer_1:5.2.7-1+deb9u11_i386.deb
Debian	8	amd64	libreoffice-kde	< 1:4.3.3-2+deb8u13	libreoffice-kde_1:4.3.3-2+deb8u13_amd64.deb