(RHSA-2024:1513) Important: libreoffice security fix update

2024-03-2611:46:06

access.redhat.com

libreoffice

security fix

input validation

gstreamer plugin

macro permission.

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.5%

JSON

LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite.

Security Fix(es):

libreoffice: Improper Input Validation leading to arbitrary gstreamer plugin execution (CVE-2023-6185)
libreoffice: Insufficient macro permission validation leading to macro execution (CVE-2023-6186)

OSVersionArchitecturePackageVersionFilename
RedHat8ppc64lelibreoffice-ure-debuginfo< 6.4.7.2-16.el8_8libreoffice-ure-debuginfo-6.4.7.2-16.el8_8.ppc64le.rpm
RedHat8x86_64libreoffice-langpack-it< 6.4.7.2-16.el8_8libreoffice-langpack-it-6.4.7.2-16.el8_8.x86_64.rpm
RedHat8x86_64libreoffice-langpack-dz< 6.4.7.2-16.el8_8libreoffice-langpack-dz-6.4.7.2-16.el8_8.x86_64.rpm
RedHat8noarchautocorr-cs< 6.4.7.2-16.el8_8autocorr-cs-6.4.7.2-16.el8_8.noarch.rpm
RedHat8x86_64libreoffice-langpack-fi< 6.4.7.2-16.el8_8libreoffice-langpack-fi-6.4.7.2-16.el8_8.x86_64.rpm
RedHat8x86_64libreoffice-officebean-debuginfo< 6.4.7.2-16.el8_8libreoffice-officebean-debuginfo-6.4.7.2-16.el8_8.x86_64.rpm
RedHat8ppc64lelibreoffice-emailmerge< 6.4.7.2-16.el8_8libreoffice-emailmerge-6.4.7.2-16.el8_8.ppc64le.rpm
RedHat8ppc64lelibreoffice-help-ta< 6.4.7.2-16.el8_8libreoffice-help-ta-6.4.7.2-16.el8_8.ppc64le.rpm
RedHat8s390xlibreoffice-calc-debuginfo< 6.4.7.2-16.el8_8libreoffice-calc-debuginfo-6.4.7.2-16.el8_8.s390x.rpm
RedHat8s390xlibreoffice-pdfimport< 6.4.7.2-16.el8_8libreoffice-pdfimport-6.4.7.2-16.el8_8.s390x.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	ppc64le	libreoffice-ure-debuginfo	< 6.4.7.2-16.el8_8	libreoffice-ure-debuginfo-6.4.7.2-16.el8_8.ppc64le.rpm
RedHat	8	x86_64	libreoffice-langpack-it	< 6.4.7.2-16.el8_8	libreoffice-langpack-it-6.4.7.2-16.el8_8.x86_64.rpm
RedHat	8	x86_64	libreoffice-langpack-dz	< 6.4.7.2-16.el8_8	libreoffice-langpack-dz-6.4.7.2-16.el8_8.x86_64.rpm
RedHat	8	noarch	autocorr-cs	< 6.4.7.2-16.el8_8	autocorr-cs-6.4.7.2-16.el8_8.noarch.rpm
RedHat	8	x86_64	libreoffice-langpack-fi	< 6.4.7.2-16.el8_8	libreoffice-langpack-fi-6.4.7.2-16.el8_8.x86_64.rpm
RedHat	8	x86_64	libreoffice-officebean-debuginfo	< 6.4.7.2-16.el8_8	libreoffice-officebean-debuginfo-6.4.7.2-16.el8_8.x86_64.rpm
RedHat	8	ppc64le	libreoffice-emailmerge	< 6.4.7.2-16.el8_8	libreoffice-emailmerge-6.4.7.2-16.el8_8.ppc64le.rpm
RedHat	8	ppc64le	libreoffice-help-ta	< 6.4.7.2-16.el8_8	libreoffice-help-ta-6.4.7.2-16.el8_8.ppc64le.rpm
RedHat	8	s390x	libreoffice-calc-debuginfo	< 6.4.7.2-16.el8_8	libreoffice-calc-debuginfo-6.4.7.2-16.el8_8.s390x.rpm
RedHat	8	s390x	libreoffice-pdfimport	< 6.4.7.2-16.el8_8	libreoffice-pdfimport-6.4.7.2-16.el8_8.s390x.rpm