Lucene search
UbuntuUSN-2398-1HistoryNov 05, 2014 - 12:00 a.m.
LibreOffice vulnerability
2014-11-0500:00:00
ubuntu.com
32
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
Low
0.79 High
EPSS
Percentile
98.3%
Releases
- Ubuntu 14.10
- Ubuntu 14.04 ESM
Packages
- libreoffice - Office productivity suite
Details
It was discovered that LibreOffice incorrectly handled the Impress remote
control port. An attacker could possibly use this issue to cause Impress to
crash, resulting in a denial of service, or possibly execute arbitrary
code.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 14.10 | noarch | libreoffice-core | < 1:4.3.3-0ubuntu1 | UNKNOWN |
| Ubuntu | 14.10 | noarch | browser-plugin-libreoffice | < 1:4.3.3-0ubuntu1 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libreoffice | < 1:4.3.3-0ubuntu1 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libreoffice-avmedia-backend-gstreamer | < 1:4.3.3-0ubuntu1 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libreoffice-base | < 1:4.3.3-0ubuntu1 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libreoffice-base-core | < 1:4.3.3-0ubuntu1 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libreoffice-base-drivers | < 1:4.3.3-0ubuntu1 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libreoffice-calc | < 1:4.3.3-0ubuntu1 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libreoffice-dbg | < 1:4.3.3-0ubuntu1 | UNKNOWN |
| Ubuntu | 14.10 | noarch | libreoffice-dev | < 1:4.3.3-0ubuntu1 | UNKNOWN |
References
Related
debiancve
debiancve
CVE-2014-3693
2014-11-07 19:55:03
checkpoint_advisories
checkpoint_advisories
LibreOffice Impress Remote Control Use After Free (CVE-2014-3693)
2014-11-17 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0505)
2022-01-28 00:00:00
nessus
nessus
Ubuntu 14.04 LTS : LibreOffice vulnerability (USN-2398-1)
2014-11-06 00:00:00
openSUSE Security Update : libreoffice (openSUSE-SU-2014:1412-1)
2014-11-17 00:00:00
SuSE 11.3 Security Update : LibreOffice (SAT Patch Number 10001)
2014-12-03 00:00:00
cvelist
cvelist
CVE-2014-3693
2014-11-07 19:00:00
mageia
mageia
Updated libreoffice packages fix security vulnerability
2014-12-03 22:27:32
debian
debian
[BSA-099] Security update for libreofice
2014-11-07 17:00:06
[BSA-099] Security update for libreofice
2014-11-07 17:00:06
nvd
nvd
CVE-2014-3693
2014-11-07 19:55:03
prion
prion
Design/Logic Flaw
2014-11-07 19:55:00
cve
cve
CVE-2014-3693
2014-11-07 19:55:03
ubuntucve
ubuntucve
CVE-2014-3693
2014-11-05 00:00:00
securityvulns
securityvulns
LibreOffice use-after-free vulnereability
2014-11-24 00:00:00
redhat
redhat
centos
centos
oraclelinux
oraclelinux
libreoffice security, bug fix, and enhancement update
2015-03-11 00:00:00
gentoo
gentoo
LibreOffice, OpenOffice: Multiple vulnerabilities
2016-03-09 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
Low
0.79 High
EPSS
Percentile
98.3%
Related for USN-2398-1