MGASA-2019-0102

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2019-0102.html

Import Source

https://advisories.mageia.org/MGASA-2019-0102.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2019-0102

Related

CVE-2018-16858

Published

2019-02-22T01:08:50Z

Modified

2019-06-27T21:29:00Z

Summary

Updated libreoffice packages fix security vulnerability

Details

Alex Infuehr discovered a directory traversal vulnerability which could result in the execution of Python script code when opening a malformed document (CVE-2018-16858).

The libreoffice package has been updated to version 6.1.5.2, fixing this issue, and including several other bug fixes and enhancements. Several supporting library packages have been updated as well.

Here's the list of improvements from 5.3 to 6.1: https://wiki.documentfoundation.org/ReleaseNotes/5.4 https://wiki.documentfoundation.org/ReleaseNotes/6.0 https://wiki.documentfoundation.org/ReleaseNotes/6.1

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:6

libabw

Package

Name: libabw
Purl: pkg:rpm/mageia/libabw?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.2-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libcdr

Package

Name: libcdr
Purl: pkg:rpm/mageia/libcdr?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.5-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libcmis

Package

Name: libcmis
Purl: pkg:rpm/mageia/libcmis?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.5.2-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libe-book

Package

Name: libe-book
Purl: pkg:rpm/mageia/libe-book?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.3-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libetonyek

Package

Name: libetonyek
Purl: pkg:rpm/mageia/libetonyek?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.9-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libfreehand

Package

Name: libfreehand
Purl: pkg:rpm/mageia/libfreehand?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.2-2.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libmspub

Package

Name: libmspub
Purl: pkg:rpm/mageia/libmspub?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.4-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libmwaw

Package

Name: libmwaw
Purl: pkg:rpm/mageia/libmwaw?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.3.14-2.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libodfgen

Package

Name: libodfgen
Purl: pkg:rpm/mageia/libodfgen?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.7-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libpagemaker

Package

Name: libpagemaker
Purl: pkg:rpm/mageia/libpagemaker?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.0.4-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libstaroffice

Package

Name: libstaroffice
Purl: pkg:rpm/mageia/libstaroffice?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.0.6-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libvisio

Package

Name: libvisio
Purl: pkg:rpm/mageia/libvisio?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.6-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libwpg

Package

Name: libwpg
Purl: pkg:rpm/mageia/libwpg?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.3.3-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libwps

Package

Name: libwps
Purl: pkg:rpm/mageia/libwps?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.4.10-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libzmf

Package

Name: libzmf
Purl: pkg:rpm/mageia/libzmf?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.0.2-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

cppunit

Package

Name: cppunit
Purl: pkg:rpm/mageia/cppunit?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.14.0-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libepubgen

Package

Name: libepubgen
Purl: pkg:rpm/mageia/libepubgen?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.1-2.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libixion

Package

Name: libixion
Purl: pkg:rpm/mageia/libixion?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.14.1-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libnumbertext

Package

Name: libnumbertext
Purl: pkg:rpm/mageia/libnumbertext?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.5-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

liborcus

Package

Name: liborcus
Purl: pkg:rpm/mageia/liborcus?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.14.1-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libqxp

Package

Name: libqxp
Purl: pkg:rpm/mageia/libqxp?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.0.2-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

mdds

Package

Name: mdds
Purl: pkg:rpm/mageia/mdds?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.4.3-1.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"

libreoffice

Package

Name: libreoffice
Purl: pkg:rpm/mageia/libreoffice?arch=source&distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.1.5.2-1.2.mga6

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2019-0102.json"