Test ID:	1.3.6.1.4.1.25623.1.0.72422
Category:	Gentoo Local Security Checks
Title:	Gentoo Security Advisory GLSA 201209-05 (libreoffice)
Summary:	The remote host is missing updates announced in;advisory GLSA 201209-05.
Description:	Summary: The remote host is missing updates announced in advisory GLSA 201209-05. Vulnerability Insight: Multiple vulnerabilities have been found in LibreOffice, allowing remote attackers to execute arbitrary code or cause a Denial of Service. Solution: All LibreOffice users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-office/libreoffice-3.5.5.3' All users of the LibreOffice binary package should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-office/libreoffice-bin-3.5.5.3' CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-2713 1026145 http://www.securitytracker.com/id?1026145 49969 http://www.securityfocus.com/bid/49969 50692 http://secunia.com/advisories/50692 60799 http://secunia.com/advisories/60799 76178 http://osvdb.org/76178 DSA-2315 http://www.debian.org/security/2011/dsa-2315 FEDORA-2011-14036 http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068160.html FEDORA-2011-14049 http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068198.html GLSA-201209-05 http://security.gentoo.org/glsa/glsa-201209-05.xml GLSA-201408-19 http://www.gentoo.org/security/en/glsa/glsa-201408-19.xml MDVSA-2011:172 http://www.mandriva.com/security/advisories?name=MDVSA-2011:172 http://www.libreoffice.org/advisories/CVE-2011-2713/ https://bugzilla.redhat.com/show_bug.cgi?id=725668 openSUSE-SU-2011:1143 http://lists.opensuse.org/opensuse-updates/2011-10/msg00019.html Common Vulnerability Exposure (CVE) ID: CVE-2012-0037 1026837 http://www.securitytracker.com/id?1026837 48479 http://secunia.com/advisories/48479 48493 http://secunia.com/advisories/48493 48494 http://secunia.com/advisories/48494 48526 http://secunia.com/advisories/48526 48529 http://secunia.com/advisories/48529 48542 http://secunia.com/advisories/48542 48649 http://secunia.com/advisories/48649 52681 http://www.securityfocus.com/bid/52681 80307 http://www.osvdb.org/80307 DSA-2438 http://www.debian.org/security/2012/dsa-2438 FEDORA-2012-4629 http://lists.fedoraproject.org/pipermail/package-announce/2012-April/077708.html FEDORA-2012-4663 http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078242.html MDVSA-2012:061 http://www.mandriva.com/security/advisories?name=MDVSA-2012:061 MDVSA-2012:062 http://www.mandriva.com/security/advisories?name=MDVSA-2012:062 MDVSA-2012:063 http://www.mandriva.com/security/advisories?name=MDVSA-2012:063 RHSA-2012:0410 http://rhn.redhat.com/errata/RHSA-2012-0410.html RHSA-2012:0411 http://rhn.redhat.com/errata/RHSA-2012-0411.html [openoffice-commits] 20200305 svn commit: r1874832 - in /openoffice/ooo-site/trunk/content: download/checksums.html download/globalvars.js download/test/globalvars.js security/cves/CVE-2012-0037.html security/cves/CVE-2013-1571.html https://lists.apache.org/thread.html/re0504f08000df786e51795940501e81a5d0ae981ecca68141e87ece0%40%3Ccommits.openoffice.apache.org%3E [oss-security] 20120427 Fwd: CVE-2012-0037: libraptor - XXE in RDF/XML File Interpretation (Multiple office products affected) http://www.openwall.com/lists/oss-security/2012/03/27/4 http://blog.documentfoundation.org/2012/03/22/tdf-announces-libreoffice-3-4-6/ http://librdf.org/raptor/RELEASE.html#rel2_0_7 http://vsecurity.com/resources/advisory/20120324-1/ http://www.libreoffice.org/advisories/CVE-2012-0037/ http://www.openoffice.org/security/cves/CVE-2012-0037.html https://github.com/dajobe/raptor/commit/a676f235309a59d4aa78eeffd2574ae5d341fcb0 openoffice-xml-info-disclosure(74235) https://exchange.xforce.ibmcloud.com/vulnerabilities/74235 Common Vulnerability Exposure (CVE) ID: CVE-2012-1149 1027068 http://securitytracker.com/id?1027068 20120516 CVE-2012-1149 OpenOffice.org integer overflow error in vclmi.dll module when allocating memory for an embedded image object http://archives.neohapsis.com/archives/bugtraq/2012-05/0089.html 46992 http://secunia.com/advisories/46992 47244 http://secunia.com/advisories/47244 49140 http://secunia.com/advisories/49140 49373 http://secunia.com/advisories/49373 49392 http://secunia.com/advisories/49392 53570 http://www.securityfocus.com/bid/53570 81988 http://www.osvdb.org/81988 DSA-2473 http://www.debian.org/security/2012/dsa-2473 DSA-2487 http://www.debian.org/security/2012/dsa-2487 FEDORA-2012-8042 http://lists.fedoraproject.org/pipermail/package-announce/2012-May/081319.html FEDORA-2012-8114 http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082168.html MDVSA-2012:090 http://www.mandriva.com/security/advisories?name=MDVSA-2012:090 MDVSA-2012:091 http://www.mandriva.com/security/advisories?name=MDVSA-2012:091 RHSA-2012:0705 http://rhn.redhat.com/errata/RHSA-2012-0705.html http://www.libreoffice.org/advisories/cve-2012-1149/ http://www.openoffice.org/security/cves/CVE-2012-1149.html openoffice-vclmi-bo(75692) https://exchange.xforce.ibmcloud.com/vulnerabilities/75692 Common Vulnerability Exposure (CVE) ID: CVE-2012-2665 1027331 http://www.securitytracker.com/id?1027331 1027332 http://www.securitytracker.com/id?1027332 50142 http://secunia.com/advisories/50142 50146 http://secunia.com/advisories/50146 54769 http://www.securityfocus.com/bid/54769 DSA-2520 http://www.debian.org/security/2012/dsa-2520 RHSA-2012:1135 http://rhn.redhat.com/errata/RHSA-2012-1135.html USN-1536-1 http://www.ubuntu.com/usn/USN-1536-1 USN-1537-1 http://www.ubuntu.com/usn/USN-1537-1 http://www.libreoffice.org/about-us/security/advisories/cve-2012-2665/ http://www.pre-cert.de/advisories/PRE-SA-2012-05.txt https://bugzilla.redhat.com/show_bug.cgi?id=826077
Copyright	Copyright (C) 2012 E-Soft Inc.

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.