Updated libreoffice packages fix security vulnerability
Publication date: 03 Dec 2014Modification date: 03 Dec 2014
Type: security
Affected Mageia releases : 4
CVE: CVE-2014-3693
Description
"Document as E-mail" vulnerability (bnc#900218).
It was discovered that LibreOffice incorrectly handled the Impress remote
control port. An attacker could possibly use this issue to cause Impress to
crash, resulting in a denial of service, or possibly execute arbitrary
code (CVE-2014-3693).
References
- https://bugs.mageia.org/show_bug.cgi?id=14475
- http://www.libreoffice.org/about-us/security/advisories/cve-2014-3693/
- http://www.ubuntu.com/usn/usn-2398-1/
- http://lists.opensuse.org/opensuse-updates/2014-11/msg00049.html
- https://bugzilla.suse.com/show_bug.cgi?id=900218
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3693
SRPMS
4/core
- libreoffice-4.1.6.2-2.mga4