Oval Definition:oval:org.opensuse.security:def:56763
Revision Date:2020-12-01Version:1
Title:Security update for libreoffice (Moderate)
Description:





This update for libreoffice to 6.0.4.2 fixes lots of bugs and also the following issues:

Security issues fixed:

- CVE-2018-10120: The SwCTBWrapper::Read function in sw/source/filter/ww8/ww8toolbar.cxx did not validate a customizations index, which allowed remote attackers to cause a denial of service (heap-based buffer overflow with write access) or possibly have unspecified other impact via a crafted document that contains a certain Microsoft Word record. (bsc#1089706) - CVE-2018-10119: sot/source/sdstor/stgstrms.cxx used an incorrect integer data type in the StgSmallStrm class, which allowed remote attackers to cause a denial of service (use-after-free with write access) or possibly have unspecified other impact via a crafted document that uses the structured storage ole2 wrapper file format. (bsc#1089705)

Other issues fixed:

- DOCX import: missing table background color - Bring back offline help per popular demand as lto saves space we could use with it bsc#915996

Family:unixClass:patch
Status:Reference(s):1000394
1000399
1000434
1000436
1000686
1000688
1000689
1000690
1000691
1000692
1000693
1000694
1000695
1000696
1000697
1000698
1000699
1000700
1000701
1000702
1000703
1000704
1000706
1000707
1000708
1000709
1000711
1000712
1000713
1000714
1000715
1001066
1001221
1002206
1002209
1002421
1002422
1003629
1005123
1005125
1005127
1005328
1033783
1045327
1057950
1068664
1089705
1089706
1090737
1091772
1117951
1127080
1131291
1133191
1136446
1137597
1137825
1159208
1159623
1169511
1172277
1173144
1173274
758040
814440
860611
901748
904348
915996
921949
924493
926238
933514
936773
937787
939826
939926
940776
941113
941202
943959
944296
947241
947478
949100
949192
949706
949744
949936
950013
950580
950750
950998
951110
951165
951440
951638
951864
952384
952666
953717
953826
953830
953971
953980
954200
954201
954635
954986
955136
955148
955224
955354
955422
955533
955644
956047
956053
956147
956284
956703
956711
956717
956801
956876
957174
957395
957546
958504
958510
958647
958789
981670
CVE-2011-4405
CVE-2012-0876
CVE-2013-2124
CVE-2013-4419
CVE-2014-3566
CVE-2014-9907
CVE-2015-0272
CVE-2015-2925
CVE-2015-4792
CVE-2015-4802
CVE-2015-4807
CVE-2015-4815
CVE-2015-4826
CVE-2015-4830
CVE-2015-4836
CVE-2015-4858
CVE-2015-4861
CVE-2015-4870
CVE-2015-4913
CVE-2015-5156
CVE-2015-5969
CVE-2015-7799
CVE-2015-7872
CVE-2015-7990
CVE-2015-8076
CVE-2015-8077
CVE-2015-8078
CVE-2015-8215
CVE-2015-8957
CVE-2015-8958
CVE-2015-8959
CVE-2016-0718
CVE-2016-4472
CVE-2016-6823
CVE-2016-7101
CVE-2016-7513
CVE-2016-7514
CVE-2016-7515
CVE-2016-7516
CVE-2016-7517
CVE-2016-7518
CVE-2016-7519
CVE-2016-7520
CVE-2016-7521
CVE-2016-7522
CVE-2016-7523
CVE-2016-7524
CVE-2016-7525
CVE-2016-7526
CVE-2016-7527
CVE-2016-7528
CVE-2016-7529
CVE-2016-7530
CVE-2016-7531
CVE-2016-7532
CVE-2016-7533
CVE-2016-7534
CVE-2016-7535
CVE-2016-7537
CVE-2016-7538
CVE-2016-7539
CVE-2016-7540
CVE-2016-7799
CVE-2016-7800
CVE-2016-7996
CVE-2016-7997
CVE-2016-8677
CVE-2016-8682
CVE-2016-8683
CVE-2016-8684
CVE-2016-9063
CVE-2017-1000158
CVE-2017-1000251
CVE-2017-15274
CVE-2017-7467
CVE-2017-9233
CVE-2018-10119
CVE-2018-10120
CVE-2019-11477
CVE-2019-11478
CVE-2019-11487
CVE-2019-12387
CVE-2019-1559
CVE-2019-3846
CVE-2020-14422
CVE-2020-2654
CVE-2020-2756
CVE-2020-2757
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830
CVE-2020-8163
SUSE-SU-2015:2292-1
SUSE-SU-2016:0296-1
SUSE-SU-2016:1457-1
SUSE-SU-2016:2667-1
SUSE-SU-2017:1092-1
SUSE-SU-2017:2786-1
SUSE-SU-2018:1296-1
SUSE-SU-2019:1608-1
SUSE-SU-2019:2066-1
SUSE-SU-2020:0497-1
SUSE-SU-2020:1683-1
SUSE-SU-2020:2140-1
SUSE-SU-2020:2157-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • MozillaThunderbird-52.7-lp150.2 is installed
  • OR MozillaThunderbird-translations-common-52.7-lp150.2 is installed
  • OR MozillaThunderbird-translations-other-52.7-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • update-test-32bit-pkg-5.1-lp151.12 is installed
  • OR update-test-affects-package-manager-5.1-lp151.12 is installed
  • OR update-test-broken-5.1-lp151.12 is installed
  • OR update-test-feature-5.1-lp151.12 is installed
  • OR update-test-interactive-5.1-lp151.12 is installed
  • OR update-test-optional-5.1-lp151.12 is installed
  • OR update-test-reboot-needed-5.1-lp151.12 is installed
  • OR update-test-relogin-suggested-5.1-lp151.12 is installed
  • OR update-test-security-5.1-lp151.12 is installed
  • OR update-test-trivial-5.1-lp151.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libreoffice-6.0.4.2-43.33 is installed
  • OR libreoffice-base-6.0.4.2-43.33 is installed
  • OR libreoffice-base-drivers-mysql-6.0.4.2-43.33 is installed
  • OR libreoffice-base-drivers-postgresql-6.0.4.2-43.33 is installed
  • OR libreoffice-branding-upstream-6.0.4.2-43.33 is installed
  • OR libreoffice-calc-6.0.4.2-43.33 is installed
  • OR libreoffice-calc-extensions-6.0.4.2-43.33 is installed
  • OR libreoffice-draw-6.0.4.2-43.33 is installed
  • OR libreoffice-filters-optional-6.0.4.2-43.33 is installed
  • OR libreoffice-gnome-6.0.4.2-43.33 is installed
  • OR libreoffice-gtk2-6.0.4.2-43.33 is installed
  • OR libreoffice-icon-themes-6.0.4.2-43.33 is installed
  • OR libreoffice-impress-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-af-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-ar-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-ca-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-cs-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-da-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-de-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-en-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-es-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-fi-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-fr-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-gu-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-hi-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-hu-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-it-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-ja-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-ko-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-nb-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-nl-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-nn-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-pl-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-pt_BR-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-pt_PT-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-ro-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-ru-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-sk-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-sv-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-xh-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-zh_CN-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-zh_TW-6.0.4.2-43.33 is installed
  • OR libreoffice-l10n-zu-6.0.4.2-43.33 is installed
  • OR libreoffice-mailmerge-6.0.4.2-43.33 is installed
  • OR libreoffice-math-6.0.4.2-43.33 is installed
  • OR libreoffice-officebean-6.0.4.2-43.33 is installed
  • OR libreoffice-pyuno-6.0.4.2-43.33 is installed
  • OR libreoffice-writer-6.0.4.2-43.33 is installed
  • OR libreoffice-writer-extensions-6.0.4.2-43.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • kernel-default-3.12.51-60.20 is installed
  • OR kernel-default-base-3.12.51-60.20 is installed
  • OR kernel-default-devel-3.12.51-60.20 is installed
  • OR kernel-default-man-3.12.51-60.20 is installed
  • OR kernel-devel-3.12.51-60.20 is installed
  • OR kernel-macros-3.12.51-60.20 is installed
  • OR kernel-source-3.12.51-60.20 is installed
  • OR kernel-syms-3.12.51-60.20 is installed
  • OR kernel-xen-3.12.51-60.20 is installed
  • OR kernel-xen-base-3.12.51-60.20 is installed
  • OR kernel-xen-devel-3.12.51-60.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_67-60_64_24-default-9-4 is installed
  • OR kgraft-patch-3_12_67-60_64_24-xen-9-4 is installed
  • OR kgraft-patch-SLE12-SP1_Update_11-9-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • guestfs-data-1.32.4-14 is installed
  • OR guestfs-tools-1.32.4-14 is installed
  • OR guestfsd-1.32.4-14 is installed
  • OR libguestfs0-1.32.4-14 is installed
  • OR perl-Sys-Guestfs-1.32.4-14 is installed
  • OR python-libguestfs-1.32.4-14 is installed
  • OR virt-p2v-1.32.4-14 is installed
  • OR virt-v2v-1.32.4-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • git-2.12.3-27.14 is installed
  • OR git-core-2.12.3-27.14 is installed
  • OR git-doc-2.12.3-27.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_95-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_25-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_120-92_70-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_20-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • gstreamer-plugins-bad-1.8.3-17 is installed
  • OR gstreamer-plugins-bad-lang-1.8.3-17 is installed
  • OR libgstadaptivedemux-1_0-0-1.8.3-17 is installed
  • OR libgstbadaudio-1_0-0-1.8.3-17 is installed
  • OR libgstbadbase-1_0-0-1.8.3-17 is installed
  • OR libgstbadvideo-1_0-0-1.8.3-17 is installed
  • OR libgstbasecamerabinsrc-1_0-0-1.8.3-17 is installed
  • OR libgstcodecparsers-1_0-0-1.8.3-17 is installed
  • OR libgstgl-1_0-0-1.8.3-17 is installed
  • OR libgstmpegts-1_0-0-1.8.3-17 is installed
  • OR libgstphotography-1_0-0-1.8.3-17 is installed
  • OR libgsturidownloader-1_0-0-1.8.3-17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • curl-7.37.0-37.47 is installed
  • OR libcurl4-7.37.0-37.47 is installed
  • OR libcurl4-32bit-7.37.0-37.47 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-68.3.0-109.98 is installed
  • OR MozillaFirefox-translations-common-68.3.0-109.98 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libecpg6-10.12-1.18 is installed
  • OR libpq5-10.12-1.18 is installed
  • OR libpq5-32bit-10.12-1.18 is installed
  • OR postgresql10-10.12-1.18 is installed
  • OR postgresql10-contrib-10.12-1.18 is installed
  • OR postgresql10-docs-10.12-1.18 is installed
  • OR postgresql10-libs-10.12-1.18 is installed
  • OR postgresql10-plperl-10.12-1.18 is installed
  • OR postgresql10-plpython-10.12-1.18 is installed
  • OR postgresql10-pltcl-10.12-1.18 is installed
  • OR postgresql10-server-10.12-1.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libgssglue1-0.4-3 is installed
  • OR libgssglue1-32bit-0.4-3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND python-Twisted-15.2.1-9.5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.13-28.31 is installed
  • OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed
  • OR python-2.7.13-28.31 is installed
  • OR python-32bit-2.7.13-28.31 is installed
  • OR python-base-2.7.13-28.31 is installed
  • OR python-base-32bit-2.7.13-28.31 is installed
  • OR python-curses-2.7.13-28.31 is installed
  • OR python-demo-2.7.13-28.31 is installed
  • OR python-devel-2.7.13-28.31 is installed
  • OR python-doc-2.7.13-28.31 is installed
  • OR python-doc-pdf-2.7.13-28.31 is installed
  • OR python-gdbm-2.7.13-28.31 is installed
  • OR python-idle-2.7.13-28.31 is installed
  • OR python-tk-2.7.13-28.31 is installed
  • OR python-xml-2.7.13-28.31 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-ecdsa-0.13.3-5.10 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND log4j-1.2.15-126.3 is installed
    • BACK