Executive Summary
Summary | |
---|---|
Title | LibreOffice regression |
Informations | |||
---|---|---|---|
Name | USN-3579-3 | First vendor Publication | 2018-03-07 |
Vendor | Ubuntu | Last vendor Modification | 2018-03-07 |
Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:N) | |||
---|---|---|---|
Cvss Base Score | 5 | Attack Range | Network |
Cvss Impact Score | 2.9 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 17.10 Summary: USN-3579-1 caused a regression in LibreOffice. Software Description: - libreoffice: Office productivity suite Details: USN-3579-1 fixed a vulnerability in LibreOffice. After upgrading, it was no longer possible for LibreOffice to open documents from certain locations outside of the user's home directory. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that =WEBSERVICE calls in a document could be used to Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 17.10: After a standard system update you need to restart LibreOffice to make all the necessary changes. References: Package Information: |
Original Source
Url : http://www.ubuntu.com/usn/USN-3579-3 |
CPE : Common Platform Enumeration
Snort® IPS/IDS
Date | Description |
---|---|
2018-09-18 | LibreOffice WEBSERVICE arbitrary file disclosure attempt RuleID : 47566 - Revision : 1 - Type : FILE-OFFICE |
2018-09-18 | LibreOffice WEBSERVICE arbitrary file disclosure attempt RuleID : 47565 - Revision : 1 - Type : FILE-OFFICE |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2018-03-15 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2018-0517.nasl - Type : ACT_GATHER_INFO |
2018-03-12 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2018-0418.nasl - Type : ACT_GATHER_INFO |
2018-02-26 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_289269f10def11e899b0d017c2987f9a.nasl - Type : ACT_GATHER_INFO |
2018-02-20 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201802-06.nasl - Type : ACT_GATHER_INFO |
2018-02-15 | Name : The remote Fedora host is missing a security update. File : fedora_2018-3eb4d8e4c4.nasl - Type : ACT_GATHER_INFO |
2018-02-12 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-4111.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2018-03-07 21:20:11 |
|