4.3 - USN-2400-1

Executive Summary

Summary
Title	LibreOffice vulnerability

Informations
Name	USN-2400-1	First vendor Publication	2014-11-10
Vendor	Ubuntu	Last vendor Modification	2014-11-10
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:N/A:N)
Cvss Base Score	4.3	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 12.04 LTS

Summary:

LibreOffice could be made to embed sensitive information into documents.

Software Description: - libreoffice: Office productivity suite

Details:

It was discovered that LibreOffice incorrectly handled OLE preview generation. If a user were tricked into opening a crafted document, an attacker could possibly exploit this to embed arbitrary data into documents.

Update instructions:

The problem can be corrected by updating your system to the following package versions:

Ubuntu 12.04 LTS:
libreoffice-core 1:3.5.7-0ubuntu7

After a standard system update you need to restart LibreOffice to make all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2400-1
CVE-2014-3575

Package Information:
https://launchpad.net/ubuntu/+source/libreoffice/1:3.5.7-0ubuntu7

Original Source

Url : http://www.ubuntu.com/usn/USN-2400-1

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-200	Information Exposure

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:26874

Oval ID:	oval:org.mitre.oval:def:26874
Title:	SUSE-SU-2014:1116-1 -- Security update for LibreOffice
Description:	LibreOffice was updated to version 4.0.3.3.26. (SUSE 4.0-patch26, tag suse-4.0-26, based on upstream 4.0.3.3). Two security issues have been fixed: * DOCM memory corruption vulnerability. (CVE-2013-4156, bnc#831578) * Data exposure using crafted OLE objects. (CVE-2014-3575, bnc#893141) The following non-security issues have been fixed: * chart shown flipped (bnc#834722) * chart missing dataset (bnc#839727) * import new line in text (bnc#828390) * lines running off screens (bnc#819614) * add set-all language menu (bnc#863021) * text rotation (bnc#783433, bnc#862510) * page border shadow testcase (bnc#817956) * one more clickable field fix (bnc#802888) * multilevel labels are rotated (bnc#820273) * incorrect nested table margins (bnc#816593) * use BitmapURL only if its valid (bnc#821567) * import gradfill for text colors (bnc#870234) * fix undo of paragraph attributes (bnc#828598) * stop-gap solution to avoid crash (bnc#830205) * import images with duotone filter (bnc#820077) * missing drop downs for autofilter (bnc#834705) * typos in first page style creation (bnc#820836) * labels wrongly interpreted as dates (bnc#834720) * RTF import of fFilled shape property (bnc#825305) * placeholders text size is not correct (bnc#831457) * cells value formatted with wrong output (bnc#821795) * RTF import of freeform shape coordinates (bnc#823655) * styles (rename &) copy to different decks (bnc#757432) * XLSX Chart import with internal data table (bnc#819822) * handle M.d.yyyy date format in DOCX import (bnc#820509) * paragraph style in empty first page header (bnc#823651) * copying slides having same master page name (bnc#753460) * printing handouts using the default, 'Order' (bnc#835985) * wrap polygon was based on dest size of picture (bnc#820800) * added common flags support for SEQ field import (bnc#825976) * hyperlinks of illustration index in DOCX export (bnc#834035) * allow insertion of redlines with an empty author (bnc#837302) * handle drawinglayer rectangle inset in VML import (bnc#779642) * don't apply complex font size to non-complex font (bnc#820819) * issue with negative seeks in win32 shell extension (bnc#829017) * slide appears quite garbled when imported from PPTX (bnc#593612) * initial MCE support in writerfilter ooxml tokenizer (bnc#820503) * MSWord uses xb for linebreaks in DB fields, take 2 (bnc#878854) * try harder to convert floating tables to text frames (bnc#779620) * itemstate in parent style incorrectly reported as set (bnc#819865) * default color hidden by Default style in writerfilter (bnc#820504) * DOCX document crashes when using internal OOXML filter (bnc#382137) * ugly workaround for external leading with symbol fonts (bnc#823626) * followup fix for exported xlsx causes errors for mso2007 (bnc#823935) * we only support simple labels in the InternalDataProvider (bnc#864396) * RTF import: fix import of numbering bullet associated font (bnc#823675) * page specific footer extended to every pages in DOCX export (bnc#654230) * v:textbox mso-fit-shape-to-text style property in VML import (bnc#820788) * w:spacing in a paragraph should also apply to as-char objects (bnc#780044) * compatibility setting for MS Word wrapping text in less space (bnc#822908) * fix SwWrtShell::SelAll() to work with empty table at doc start (bnc#825891) Security Issues: * CVE-2014-3575 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3575> * CVE-2013-4156 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4156>
Family:	unix	Class:	patch
Reference(s):	SUSE-SU-2014:1116-1 CVE-2013-4156 CVE-2014-3575	Version:	3
Platform(s):	SUSE Linux Enterprise Desktop 11	Product(s):	LibreOffice
Definition Synopsis:
SUSE Linux Enterprise Desktop 11.x is installed Packages match section libreoffice RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-base RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-base-drivers-postgresql RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-base-extensions RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-calc RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-calc-extensions RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-draw RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-draw-extensions RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-filters-optional RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-gnome RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-impress RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-impress-extensions RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-kde RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-kde4 RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-mailmerge RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-math RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-mono RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-officebean RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-pyuno RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-writer RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-writer-extensions RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-help-cs RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-da RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-de RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-en-GB RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-en-US RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-es RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-fr RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-gu-IN RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-hi-IN RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-hu RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-it RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-ja RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-ko RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-nl RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-pl RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-pt RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-pt-BR RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-ru RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-sv RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-zh-CN RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-help-zh-TW RPM is earlier than 0:4.0.3.3.26-0.6.1 AND libreoffice-icon-themes RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-af RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-ar RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-ca RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-cs RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-da RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-de RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-en-GB RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-es RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-fi RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-fr RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-gu-IN RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-hi-IN RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-hu RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-it RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-ja RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-ko RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-nb RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-nl RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-nn RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-pl RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-pt RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-pt-BR RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-ru RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-sk RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-sv RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-xh RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-zh-CN RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-zh-TW RPM is earlier than 0:4.0.3.3.26-0.6.2 AND libreoffice-l10n-zu RPM is earlier than 0:4.0.3.3.26-0.6.2

Definition Id: oval:org.mitre.oval:def:27913

Oval ID:	oval:org.mitre.oval:def:27913
Title:	USN-2400-1 -- LibreOffice vulnerability
Description:	It was discovered that LibreOffice incorrectly handled OLE preview generation. If a user were tricked into opening a crafted document, an attacker could possibly exploit this to embed arbitrary data into documents.
Family:	unix	Class:	patch
Reference(s):	USN-2400-1 CVE-2014-3575	Version:	3
Platform(s):	Ubuntu 12.04	Product(s):	libreoffice
Definition Synopsis:
Ubuntu 12.04 is installed AND libreoffice-core is earlier than 1:3.5.7-0ubuntu7

CPE : Common Platform Enumeration

Type	Description	Count
Application	Apache Openoffice cpe:2.3:a:apache:openoffice:4.1.0:::::::* cpe:2.3:a:apache:openoffice:4.0.1:::::::* cpe:2.3:a:apache:openoffice:4.0.0:::::::* cpe:2.3:a:apache:openoffice:3.4.1:::::::* cpe:2.3:a:apache:openoffice:3.4.0:beta:::::: cpe:2.3:a:apache:openoffice:3.3.0:::::::* cpe:2.3:a:apache:openoffice:3.1.1:::::::* cpe:2.3:a:apache:openoffice:2.4.1:::::::* cpe:2.3:a:apache:openoffice:2.4.1::::::x64: cpe:2.3:a:apache:openoffice:2.0.4:::::::* cpe:2.3:a:apache:openoffice:::::::: cpe:2.3:a:apache:openoffice:-:::::::*	12
Application	Libreoffice cpe:2.3:a:libreoffice:libreoffice:4.3.0.4:::::::* cpe:2.3:a:libreoffice:libreoffice:4.3.0.3:::::::* cpe:2.3:a:libreoffice:libreoffice:4.3.0.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.3.0.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.3.0.0:alpha1:::::: cpe:2.3:a:libreoffice:libreoffice:4.3.0.0:beta1:::::: cpe:2.3:a:libreoffice:libreoffice:4.3.0.0:beta2:::::: cpe:2.3:a:libreoffice:libreoffice:4.3.0:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.8.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.8.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.7.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.7.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.6.3:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.6.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.6.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.6:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.5.2:-:::::: cpe:2.3:a:libreoffice:libreoffice:4.2.5.2:hotfix1:::::: cpe:2.3:a:libreoffice:libreoffice:4.2.5.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.5:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.4.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.4.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.4:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.3.3:-:::::: cpe:2.3:a:libreoffice:libreoffice:4.2.3.3:hotfix1:::::: cpe:2.3:a:libreoffice:libreoffice:4.2.3.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.3.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.3:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.2.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.1.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.0.4:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.0.3:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.0.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.0.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.2.0.0:alpha1:::::: cpe:2.3:a:libreoffice:libreoffice:4.2.0.0:beta1:::::: cpe:2.3:a:libreoffice:libreoffice:4.2.0.0:beta2:::::: cpe:2.3:a:libreoffice:libreoffice:4.2.0:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.6.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.6.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.5.3:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.5.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.5.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.4.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.4.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.4:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.3.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.3.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.3:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.2.3:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.2.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.2.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.1.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.1.2:-:::::: cpe:2.3:a:libreoffice:libreoffice:4.1.1.2:hotfix1:::::: cpe:2.3:a:libreoffice:libreoffice:4.1.1.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.0.4:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.0.3:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.0.3:-:::::: cpe:2.3:a:libreoffice:libreoffice:4.1.0.3:hotfix1:::::: cpe:2.3:a:libreoffice:libreoffice:4.1.0.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.0.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.1.0.0:alpha1:::::: cpe:2.3:a:libreoffice:libreoffice:4.1.0.0:beta1:::::: cpe:2.3:a:libreoffice:libreoffice:4.1.0.0:beta2:::::: cpe:2.3:a:libreoffice:libreoffice:4.1.0:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.6.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.6.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.5.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.5.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.4.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.4.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.3.3:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.3.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.3.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.3:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.2.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.2.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.1.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.1.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.0.3:-:::::: cpe:2.3:a:libreoffice:libreoffice:4.0.0.3:hotfix1:::::: cpe:2.3:a:libreoffice:libreoffice:4.0.0.2:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.0.1:::::::* cpe:2.3:a:libreoffice:libreoffice:4.0.0.0:alpha1:::::: cpe:2.3:a:libreoffice:libreoffice:4.0.0.0:beta1:::::: cpe:2.3:a:libreoffice:libreoffice:4.0.0.0:beta2:::::: cpe:2.3:a:libreoffice:libreoffice:4.0.0:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.7.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.7.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.6.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.6.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.5.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.5.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.4.3:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.4.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.4.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.3.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.3.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.2.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.2.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.1.2:-:::::: cpe:2.3:a:libreoffice:libreoffice:3.6.1.2:hotfix1:::::: cpe:2.3:a:libreoffice:libreoffice:3.6.0.4:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.0.3:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.0.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.0.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.6.0.0:beta2:::::: cpe:2.3:a:libreoffice:libreoffice:3.6.0.0:beta3:::::: cpe:2.3:a:libreoffice:libreoffice:3.6:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.99.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.98.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.7.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.7.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.6.3:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.6.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.6.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.6:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.5.3:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.5.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.5.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.5:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.4.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.4.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.4:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.4:rc2:::::: cpe:2.3:a:libreoffice:libreoffice:3.5.3.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.3.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.3:rc1:::::: cpe:2.3:a:libreoffice:libreoffice:3.5.3:rc2:::::: cpe:2.3:a:libreoffice:libreoffice:3.5.3:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.2.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.2.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.2:rc1:::::: cpe:2.3:a:libreoffice:libreoffice:3.5.2:rc2:::::: cpe:2.3:a:libreoffice:libreoffice:3.5.1.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.1.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.1:rc1:::::: cpe:2.3:a:libreoffice:libreoffice:3.5.1:rc2:::::: cpe:2.3:a:libreoffice:libreoffice:3.5.0.3:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.0.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.0.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.0.0:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.0:::::::* cpe:2.3:a:libreoffice:libreoffice:3.5.0:rc1:::::: cpe:2.3:a:libreoffice:libreoffice:3.5.0:rc2:::::: cpe:2.3:a:libreoffice:libreoffice:3.5.0:rc3:::::: cpe:2.3:a:libreoffice:libreoffice:3.5.:rc1:::::: cpe:2.3:a:libreoffice:libreoffice:3.5:::::::* cpe:2.3:a:libreoffice:libreoffice:3.4.99.3:::::::* cpe:2.3:a:libreoffice:libreoffice:3.4.99.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.4.99.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.4.99.0:::::::* cpe:2.3:a:libreoffice:libreoffice:3.4.5:::::::* cpe:2.3:a:libreoffice:libreoffice:3.4.2.3:::::::* cpe:2.3:a:libreoffice:libreoffice:3.4.2.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.4.2.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.4.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.4.1.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.4.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.4.0.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.4.0.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.4.0:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.99.5:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.99.4:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.99.3:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.99.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.99.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.4.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.4:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.3.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.3:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.202:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.2.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.1.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.0.4:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.0.3:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.0.2:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.0.1:::::::* cpe:2.3:a:libreoffice:libreoffice:3.3.0:::::::* cpe:2.3:a:libreoffice:libreoffice:3.2.99.3:::::::* cpe:2.3:a:libreoffice:libreoffice:3.2.99.2:::::::* cpe:2.3:a:libreoffice:libreoffice:::::::: cpe:2.3:a:libreoffice:libreoffice:-:::::::*	194
Os	Redhat Enterprise Linux Desktop cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*	1
Os	Redhat Enterprise Linux Server cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*	1
Os	Redhat Enterprise Linux Workstation cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*	1

Information Assurance Vulnerability Management (IAVM)

Date	Description
2014-08-28	IAVM : 2014-B-0117 - Multiple Vulnerabilities in Apache OpenOffice Severity : Category II - VMSKEY : V0054059

Nessus® Vulnerability Scanner

Date	Description
2016-10-12	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_ab947396901811e6a59014dae9d210b8.nasl - Type : ACT_GATHER_INFO
2016-03-10	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201603-05.nasl - Type : ACT_GATHER_INFO
2015-03-26	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20150305_libreoffice_on_SL7_x.nasl - Type : ACT_GATHER_INFO
2015-03-18	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2015-0377.nasl - Type : ACT_GATHER_INFO
2015-03-13	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2015-0377.nasl - Type : ACT_GATHER_INFO
2015-03-05	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2015-0377.nasl - Type : ACT_GATHER_INFO
2014-12-17	Name : The remote host contains an application that is affected by multiple vulnerab... File : libreoffice_4263.nasl - Type : ACT_GATHER_INFO
2014-12-17	Name : The remote host contains an application that is affected by multiple vulnerab... File : libreoffice_431.nasl - Type : ACT_GATHER_INFO
2014-11-11	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-2400-1.nasl - Type : ACT_GATHER_INFO
2014-09-16	Name : The remote openSUSE host is missing a security update. File : openSUSE-2014-540.nasl - Type : ACT_GATHER_INFO
2014-09-15	Name : The remote Fedora host is missing a security update. File : fedora_2014-10732.nasl - Type : ACT_GATHER_INFO
2014-09-12	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_libreoffice-201409-140902.nasl - Type : ACT_GATHER_INFO
2014-08-27	Name : The remote Windows host has an application installed that is affected by mult... File : openoffice_411.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-11-12 13:27:30	Multiple Updates
2014-11-10 21:23:22	First insertion

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	2
CPE ID(s)	209
IAVM(s)	1
Nessus® Exploit(s)	13

	Related
4.3	CVE-2014-3575
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

4.3 - USN-2400-1

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

Information Assurance Vulnerability Management (IAVM)

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU