MGASA-2019-0102

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2019-0102.html

Import Source

https://advisories.mageia.org/MGASA-2019-0102.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2019-0102

Related

CVE-2018-16858

Published

2019-02-22T01:08:50Z

Modified

2019-06-27T21:29:00Z

Summary

Updated libreoffice packages fix security vulnerability

Details

Alex Infuehr discovered a directory traversal vulnerability which could result in the execution of Python script code when opening a malformed document (CVE-2018-16858).

The libreoffice package has been updated to version 6.1.5.2, fixing this issue, and including several other bug fixes and enhancements. Several supporting library packages have been updated as well.

Here's the list of improvements from 5.3 to 6.1: https://wiki.documentfoundation.org/ReleaseNotes/5.4 https://wiki.documentfoundation.org/ReleaseNotes/6.0 https://wiki.documentfoundation.org/ReleaseNotes/6.1

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:6 / libabw

Package

Name: libabw
Purl: pkg:rpm/mageia/libabw?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.2-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libcdr

Package

Name: libcdr
Purl: pkg:rpm/mageia/libcdr?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.5-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libcmis

Package

Name: libcmis
Purl: pkg:rpm/mageia/libcmis?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.5.2-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libe-book

Package

Name: libe-book
Purl: pkg:rpm/mageia/libe-book?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.3-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libetonyek

Package

Name: libetonyek
Purl: pkg:rpm/mageia/libetonyek?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.9-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libfreehand

Package

Name: libfreehand
Purl: pkg:rpm/mageia/libfreehand?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.2-2.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libmspub

Package

Name: libmspub
Purl: pkg:rpm/mageia/libmspub?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.4-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libmwaw

Package

Name: libmwaw
Purl: pkg:rpm/mageia/libmwaw?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.3.14-2.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libodfgen

Package

Name: libodfgen
Purl: pkg:rpm/mageia/libodfgen?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.7-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libpagemaker

Package

Name: libpagemaker
Purl: pkg:rpm/mageia/libpagemaker?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.0.4-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libstaroffice

Package

Name: libstaroffice
Purl: pkg:rpm/mageia/libstaroffice?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.0.6-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libvisio

Package

Name: libvisio
Purl: pkg:rpm/mageia/libvisio?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.6-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libwpg

Package

Name: libwpg
Purl: pkg:rpm/mageia/libwpg?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.3.3-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libwps

Package

Name: libwps
Purl: pkg:rpm/mageia/libwps?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.4.10-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libzmf

Package

Name: libzmf
Purl: pkg:rpm/mageia/libzmf?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.0.2-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / cppunit

Package

Name: cppunit
Purl: pkg:rpm/mageia/cppunit?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.14.0-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libepubgen

Package

Name: libepubgen
Purl: pkg:rpm/mageia/libepubgen?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.1-2.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libixion

Package

Name: libixion
Purl: pkg:rpm/mageia/libixion?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.14.1-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libnumbertext

Package

Name: libnumbertext
Purl: pkg:rpm/mageia/libnumbertext?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.5-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / liborcus

Package

Name: liborcus
Purl: pkg:rpm/mageia/liborcus?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.14.1-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libqxp

Package

Name: libqxp
Purl: pkg:rpm/mageia/libqxp?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.0.2-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / mdds

Package

Name: mdds
Purl: pkg:rpm/mageia/mdds?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.4.3-1.mga6

Ecosystem specific

{
    "section": "core"
}

Mageia:6 / libreoffice

Package

Name: libreoffice
Purl: pkg:rpm/mageia/libreoffice?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.1.5.2-1.2.mga6

Ecosystem specific

{
    "section": "core"
}