Summary: | <app-office/libreoffice{,-bin}-{6.2.7.1,6.3.1.2}: Unsafe URL assembly flaw in allowed script location check (CVE-2019-9854) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | GLSAMaker/CVETool Bot <glsamaker> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | Flags: | nattka:
sanity-check-
|
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://www.libreoffice.org/about-us/security/advisories/cve-2019-9854/ | ||
Whiteboard: | B3 [noglsa cve] | ||
Package list: |
app-office/libreoffice-6.2.8.2 amd64 x86
app-office/libreoffice-l10n-6.2.8.2 amd64 x86
app-office/libreoffice-bin-6.2.8.2 amd64 x86
app-office/libreoffice-bin-debug-6.2.8.2 amd64 x86
|
Runtime testing required: | --- |
Description
GLSAMaker/CVETool Bot
2019-09-24 12:17:49 UTC
@ maintainer(s): Please call for stabilization! *** Bug 698772 has been marked as a duplicate of this bug. *** Arches please stabilise. x86 stable amd64 stable The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=597e61658604f7c3f3f74eb03d38d5a54d4e4fff commit 597e61658604f7c3f3f74eb03d38d5a54d4e4fff Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2019-11-02 14:05:32 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2019-11-02 15:22:32 +0000 app-office/libreoffice: Security cleanup Bug: https://bugs.gentoo.org/695536 Package-Manager: Portage-2.3.78, Repoman-2.3.17 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> app-office/libreoffice/Manifest | 2 - app-office/libreoffice/libreoffice-6.2.5.2.ebuild | 553 ---------------------- app-office/libreoffice/metadata.xml | 1 - 3 files changed, 556 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e87ca85c89afc4f49fd6027a73b344e5abb244b4 commit e87ca85c89afc4f49fd6027a73b344e5abb244b4 Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2019-11-02 13:58:55 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2019-11-02 15:22:32 +0000 app-office/libreoffice-bin: Security cleanup Bug: https://bugs.gentoo.org/695536 Package-Manager: Portage-2.3.78, Repoman-2.3.17 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> app-office/libreoffice-bin/Manifest | 12 - .../libreoffice-bin/libreoffice-bin-6.2.5.2.ebuild | 257 --------------------- 2 files changed, 269 deletions(-) Cleanup done, in case no one noticed, office out. Tree is clean! Unable to check for sanity:
> no match for package: app-office/libreoffice-6.2.8.2
GLSA Vote: No Thank you all for you work. Closing as [noglsa]. |