Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2015-0174)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2015.0174

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2015-0174)

Resumen: The remote host is missing an update for the 'libreoffice' package(s) announced via the MGASA-2015-0174 advisory.

Descripción: Summary:
The remote host is missing an update for the 'libreoffice' package(s) announced via the MGASA-2015-0174 advisory.

Vulnerability Insight:
Updated libreoffice packages fix security vulnerability:

The HWP filter in LibreOffice before 4.3.7 allows remote attackers to cause a
denial of service (crash) or possibly execute arbitrary code via a crafted HWP
document, which triggers an out-of-bounds write (CVE-2015-1774).

Affected Software/OS:
'libreoffice' package(s) on Mageia 4.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2015-1774
BugTraq ID: 74338
http://www.securityfocus.com/bid/74338
Debian Security Information: DSA-3236 (Google Search)
http://www.debian.org/security/2015/dsa-3236
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/156582.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157550.html
https://security.gentoo.org/glsa/201603-05
https://www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1094
RedHat Security Advisories: RHSA-2015:1458
http://rhn.redhat.com/errata/RHSA-2015-1458.html
http://www.securitytracker.com/id/1032205
http://www.securitytracker.com/id/1032206
SuSE Security Announcement: openSUSE-SU-2015:0859 (Google Search)
http://lists.opensuse.org/opensuse-updates/2015-05/msg00015.html
http://www.ubuntu.com/usn/USN-2578-1

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2015.0174
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2015-0174)
Resumen:	The remote host is missing an update for the 'libreoffice' package(s) announced via the MGASA-2015-0174 advisory.
Descripción:	Summary: The remote host is missing an update for the 'libreoffice' package(s) announced via the MGASA-2015-0174 advisory. Vulnerability Insight: Updated libreoffice packages fix security vulnerability: The HWP filter in LibreOffice before 4.3.7 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP document, which triggers an out-of-bounds write (CVE-2015-1774). Affected Software/OS: 'libreoffice' package(s) on Mageia 4. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-1774 BugTraq ID: 74338 http://www.securityfocus.com/bid/74338 Debian Security Information: DSA-3236 (Google Search) http://www.debian.org/security/2015/dsa-3236 http://lists.fedoraproject.org/pipermail/package-announce/2015-April/156582.html http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157550.html https://security.gentoo.org/glsa/201603-05 https://www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1094 RedHat Security Advisories: RHSA-2015:1458 http://rhn.redhat.com/errata/RHSA-2015-1458.html http://www.securitytracker.com/id/1032205 http://www.securitytracker.com/id/1032206 SuSE Security Announcement: openSUSE-SU-2015:0859 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-05/msg00015.html http://www.ubuntu.com/usn/USN-2578-1
Copyright	Copyright (C) 2022 Greenbone AG