Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2015-2619)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 146377 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.122802

Kategorie: Oracle Linux Local Security Checks

Titel: Oracle: Security Advisory (ELSA-2015-2619)

Zusammenfassung: The remote host is missing an update for the 'libreoffice' package(s) announced via the ELSA-2015-2619 advisory.

Beschreibung: Summary:
The remote host is missing an update for the 'libreoffice' package(s) announced via the ELSA-2015-2619 advisory.

Vulnerability Insight:
[4.2.8.2-11.0.1.1]
- Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile (jingdong.lu@oracle.com)
- Build with --with-vendor='Oracle America, Inc.' (jingdong.lu@oracle.com)

[1:4.2.8.2-11.1]
- Resolves: rhbz#1285818 various flaws
- CVE-2015-4551 Arbitrary file disclosure in Calc and Writer
- CVE-2015-5212 Integer underflow in PrinterSetup length
- CVE-2015-5213 Integer overflow in DOC files
- CVE-2015-5214 Bookmarks in DOC documents are insufficiently checked
causing memory corruption

Affected Software/OS:
'libreoffice' package(s) on Oracle Linux 6, Oracle Linux 7.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2015-4551
BugTraq ID: 77486
http://www.securityfocus.com/bid/77486
Debian Security Information: DSA-3394 (Google Search)
http://www.debian.org/security/2015/dsa-3394
https://security.gentoo.org/glsa/201603-05
https://security.gentoo.org/glsa/201611-03
RedHat Security Advisories: RHSA-2015:2619
http://rhn.redhat.com/errata/RHSA-2015-2619.html
http://www.securitytracker.com/id/1034085
http://www.securitytracker.com/id/1034091
http://www.ubuntu.com/usn/USN-2793-1
Common Vulnerability Exposure (CVE) ID: CVE-2015-5212
Common Vulnerability Exposure (CVE) ID: CVE-2015-5213
Common Vulnerability Exposure (CVE) ID: CVE-2015-5214
http://www.securitytracker.com/id/1034086

Copyright Copyright (C) 2015 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.122802
Kategorie:	Oracle Linux Local Security Checks
Titel:	Oracle: Security Advisory (ELSA-2015-2619)
Zusammenfassung:	The remote host is missing an update for the 'libreoffice' package(s) announced via the ELSA-2015-2619 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'libreoffice' package(s) announced via the ELSA-2015-2619 advisory. Vulnerability Insight: [4.2.8.2-11.0.1.1] - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile (jingdong.lu@oracle.com) - Build with --with-vendor='Oracle America, Inc.' (jingdong.lu@oracle.com) [1:4.2.8.2-11.1] - Resolves: rhbz#1285818 various flaws - CVE-2015-4551 Arbitrary file disclosure in Calc and Writer - CVE-2015-5212 Integer underflow in PrinterSetup length - CVE-2015-5213 Integer overflow in DOC files - CVE-2015-5214 Bookmarks in DOC documents are insufficiently checked causing memory corruption Affected Software/OS: 'libreoffice' package(s) on Oracle Linux 6, Oracle Linux 7. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2015-4551 BugTraq ID: 77486 http://www.securityfocus.com/bid/77486 Debian Security Information: DSA-3394 (Google Search) http://www.debian.org/security/2015/dsa-3394 https://security.gentoo.org/glsa/201603-05 https://security.gentoo.org/glsa/201611-03 RedHat Security Advisories: RHSA-2015:2619 http://rhn.redhat.com/errata/RHSA-2015-2619.html http://www.securitytracker.com/id/1034085 http://www.securitytracker.com/id/1034091 http://www.ubuntu.com/usn/USN-2793-1 Common Vulnerability Exposure (CVE) ID: CVE-2015-5212 Common Vulnerability Exposure (CVE) ID: CVE-2015-5213 Common Vulnerability Exposure (CVE) ID: CVE-2015-5214 http://www.securitytracker.com/id/1034086
Copyright	Copyright (C) 2015 Greenbone AG