Oval Definition:oval:org.opensuse.security:def:63988
Revision Date:2020-12-01Version:1
Title:Security update for LibreOffice (Moderate)
Description:

This update libreoffice and libraries fixes the following issues:

LibreOffice was updated to 6.3.3 (jsc#SLE-8705), bringing many bug and stability fixes.

More information for the 6.3 release at: https://wiki.documentfoundation.org/ReleaseNotes/6.3 Security issue fixed:

- CVE-2019-9853: Fixed an issue where by executing macros, the security settings could have been bypassed (bsc#1152684). Other issues addressed:

- Dropped disable-kde4 switch, since it is no longer known by configure - Disabled gtk2 because it will be removed in future releases - librelogo is now a standalone sub-package (bsc#1144522). - Partial fixes for an issue where Table(s) from DOCX showed wrong position or color (bsc#1061210). cmis-client was updated to 0.5.2:

* Removed header for Uuid's sha1 header(bsc#1105173). * Fixed Google Drive login * Added support for Google Drive two-factor authentication * Fixed access to SharePoint root folder * Limited the maximal number of redirections to 20 * Switched library implementation to C++11 (the API remains C++98-compatible) * Fixed encoding of OAuth2 credentials * Dropped cppcheck run from 'make check'. A new 'make cppcheck' target was created for it * Added proper API symbol exporting * Speeded up building of tests a bit * Fixed a few issues found by coverity and cppcheck

libixion was updated to 0.15.0:

* Updated for new liborcus * Switched to spdlog for compile-time debug log outputs * Fixed various issues

libmwaw was updated 0.3.15: * Fixed fuzzing issues

liborcus was updated to 0.15.3:

* Fixed various xml related bugs * Improved performance * Fixed multiple parser issues * Added map and structure mode to orcus-json * Other improvements and fixes

mdds was updated to 1.5.0:

* API changed to 1.5 * Moved the API incompatibility notes from README to the rst doc. * Added the overview section for flat_segment_tree.

myspell-dictionaries was updated to 20191016:

* Updated Slovenian thesaurus * Updated the da_DK dictionary * Removed the abbreviations from Thai hunspell dictionary * Updated the English dictionaries * Fixed the logo management for 'ca'

spdlog was updated to 0.16.3:

* Fixed sleep issue under MSVC that happens when changing the clock backwards * Ensured that macros always expand to expressions * Added global flush_on function

bluez changes:

* lib: Changed bluetooth.h to compile in strict C

gperf was updated to 3.1:

* The generated C code is now in ANSI-C by default. * Added option --constants-prefix. * Added declaration %define constants-prefix.

Family:unixClass:patch
Status:Reference(s):1051510
1054914
1055117
1061210
1061840
1062631
1065600
1065729
1071995
1082555
1088004
1088009
1104967
1105173
1109158
1111666
1113722
1114279
1119086
1123034
1127988
1129889
1130840
1131304
1137069
1137865
1137959
1137982
1138977
1140155
1140697
1141013
1141853
1142076
1142518
1142635
1142662
1144211
1144522
1146025
1146042
1146540
1146664
1148133
1148712
1148868
1149313
1149332
1149446
1149555
1149651
1149955
1150305
1150381
1150423
1150846
1151067
1151192
1151350
1151610
1151661
1151662
1151667
1151680
1151891
1151955
1152024
1152025
1152026
1152161
1152187
1152243
1152325
1152457
1152460
1152466
1152525
1152684
1152972
1152974
1152975
1153238
1157627
1157893
1158996
1162423
1165784
1165849
1167631
1170446
1171655
1172053
1172189
1172795
1172796
1173274
1173594
1174091
1174701
1177158
CVE-2017-18595
CVE-2018-14647
CVE-2018-20852
CVE-2019-14821
CVE-2019-15291
CVE-2019-16056
CVE-2019-16935
CVE-2019-20907
CVE-2019-3685
CVE-2019-9506
CVE-2019-9853
CVE-2019-9947
CVE-2020-10029
CVE-2020-12802
CVE-2020-12803
CVE-2020-13696
CVE-2020-14355
CVE-2020-14422
CVE-2020-1751
CVE-2020-1752
CVE-2020-8695
CVE-2020-8698
openSUSE-SU-2019:1844-1
openSUSE-SU-2019:2308-1
openSUSE-SU-2020:0784-1
openSUSE-SU-2020:1222-1
openSUSE-SU-2020:1802-1
SUSE-SU-2020:0372-1
SUSE-SU-2020:0832-1
SUSE-SU-2020:2157-1
SUSE-SU-2020:3279-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE Linux Enterprise Server 12 SP4-LTSS
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND osc-0.165.4-lp151.2.6 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • libspice-server-devel-0.14.2-lp152.2.3 is installed
  • OR libspice-server1-0.14.2-lp152.2.3 is installed
  • OR spice-0.14.2-lp152.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • bluez-5.13-5.20 is installed
  • OR libbluetooth3-5.13-5.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • libpython3_4m1_0-3.4.10-25.52 is installed
  • OR python3-3.4.10-25.52 is installed
  • OR python3-base-3.4.10-25.52 is installed
  • OR python3-curses-3.4.10-25.52 is installed
  • OR python3-devel-3.4.10-25.52 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND python-ipaddress-1.0.18-3.13 is installed
    • BACK