it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5846-1] libreoffice security update

From: Moritz Muehlenhoff <jmm AT debian.org>
To: debian-security-announce AT lists.debian.org
Subject: [IT-SecNots] [SECURITY] [DSA 5846-1] libreoffice security update
Date: Sun, 19 Jan 2025 21:27:13 +0000
Authentication-results: lists.piratenpartei.de; dkim=none; spf=none (lists.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 82.195.75.100) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
List-archive: https://lists.debian.org/msgid-search/Z41uMZsv4UAqLnGx AT seger.debian.org
List-id: <debian-security-announce.lists.debian.org>
List-url: <http://lists.debian.org/debian-security-announce/>
Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=t2vhG29KlUNsLxI6j3KTkWOHBX2lt+tIlmNQHQ8jR1Q=; b=B9 tslBYpMSH5A9E8gttmdYCbCf6q89gcDoW9e3kDfEP20Axu3eowrOuBRUUYIXxkSuUIF8mYaKmt4S5 MqaS6FkCUJGHxHRDgnIkD2VSK8cSN+RLu0lEvpwuCHzgIUmHMZHpAXuzmRRtE0SDG4RJFE+4bIOg/ +04N+yERlhKguOwotYiaJ8qGed5uHRsCH2IJtKgoETDZgRdyiYVyFkr6zVwOibRCjqr41iqxg7i3J 6ofzlwZZwWry+nMibiL5kquyZJ6/Y9RBEW6/5j9LIaKbe94Y34sTkHG/NzWGcIALSBv7MS/Vsi3tc 9n1VLvoJTezNcxWgmLT2SYa3xgmEPyuA==;
Old-return-path: <jmm AT seger.debian.org>
Priority: urgent
Resent-date: Sun, 19 Jan 2025 21:27:34 +0000 (UTC)
Resent-from: debian-security-announce AT lists.debian.org
Resent-message-id: <f3MX7bNSKIG.A.btqL.G5WjnB@bendel>
Resent-sender: debian-security-announce-request AT lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5846-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
January 19, 2025 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : libreoffice
CVE ID : CVE-2024-12425 CVE-2024-12426

Thomas Rinsma discovered two security vulnerabilities in LibreOffice,
which could result in information disclosure or overwriting of files when
opening malformed documents.

For the stable distribution (bookworm), these problems have been fixed in
version 4:7.4.7-1+deb12u6.

We recommend that you upgrade your libreoffice packages.

For the detailed security status of libreoffice please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libreoffice

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=BN89
-----END PGP SIGNATURE-----

[IT-SecNots] [SECURITY] [DSA 5846-1] libreoffice security update, Moritz Muehlenhoff, 19.01.2025

Archiv bereitgestellt durch MHonArc 2.6.19+.