Ubuntu has issued an advisory on November 5: http://www.ubuntu.com/usn/usn-2398-1/ The issue was fixed upstream in 4.2.7 and 4.3.3 according to the upstream advisory: http://www.libreoffice.org/about-us/security/advisories/cve-2014-3693/ Reproducible: Steps to Reproduce:
Whiteboard: (none) => MGA3TOO
Fedora hasn't patched for this in Fedora 19 and I don't know if they're going to. Thierry, this would be a good time to resync Mageia 4's libreoffice package with Fedora 20 (as you previously tried to do in backports), so that we can continue to support it (F19 will be officially dead soon). This would update us to 4.2.7, which would fix this bug.
Assignee: bugsquad => thierry.vignaud
OpenSuSE has issued an update for this on November 13: http://lists.opensuse.org/opensuse-updates/2014-11/msg00049.html They have patched 4.1.6.2 for this in OpenSuSE 13.1, the same version we currently have in Mageia 4. Their advisory says it also fixes another security issue. The two issues were fixed in this commit: https://build.opensuse.org/package/rdiff/openSUSE:13.1:Update/libreoffice?linkrev=base&rev=7
OpenSuSE re-diffed these two commits from upstream's 4.2 branch to make their two patches: http://cgit.freedesktop.org/libreoffice/core/commit/?h=libreoffice-4-2-7&id=a7a890509c91e79dc330c2fbf1df97f0c6b08c92 http://cgit.freedesktop.org/libreoffice/core/commit/?h=libreoffice-4-2-7&id=2b52c8686dcd3fcb95146466e0a8703e8df3cbab As of our last update, our package needs git formatted patches. The first of the two above commits is for CVE-2014-3693, and that patch applies cleanly in 4.1.6.2, so I'm using that one instead of OpenSuSE's, which looks like a bad rediff (changes the setting listed right above the setting that actually was supposed to be changed). For the second, I just added the git stuff from the commit to OpenSuSE's patch, which had some needed adaptations for 4.1.6.2 in it. I've notified some SuSE people to make sure I was right about their patch being incorrect.
The incorrectly rediff'd part of OpenSuSE's patch for CVE-2014-3693 was supposed to be disabling the "Enable remote control" setting as was done upstream, and is recommended in the upstream advisory as a mitigation. The other part of the patch is the actual vulnerability fix. In LibreOffice 4.0.6.2 in Mageia 3, this setting was already disabled by default, so nobody would be exposed to the vulnerability unless they enabled this setting. I've checked a patch to fix the CVE into Mageia 3 SVN, but I do not plan on pushing an updated build for this.
Removing Mageia 3 from the whiteboard due to EOL: http://blog.mageia.org/en/2014/11/26/lets-say-goodbye-to-mageia-3/
Whiteboard: MGA3TOO => (none)
Patched package submitted for Mageia 4. It should be available in a few hours. Note to QA: there's a PoC in the OpenSuSE bug: https://bugzilla.suse.com/show_bug.cgi?id=900214 Advisory: ======================== Updated libreoffice packages fix security vulnerabilities: "Document as E-mail" vulnerability (bnc#900218). It was discovered that LibreOffice incorrectly handled the Impress remote control port. An attacker could possibly use this issue to cause Impress to crash, resulting in a denial of service, or possibly execute arbitrary code (CVE-2014-3693). References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3693 http://www.libreoffice.org/about-us/security/advisories/cve-2014-3693/ http://www.ubuntu.com/usn/usn-2398-1/ http://lists.opensuse.org/opensuse-updates/2014-11/msg00049.html https://bugzilla.suse.com/show_bug.cgi?id=900218 ======================== Updated packages in core/updates_testing: ======================== libreoffice-4.1.6.2-2.mga4 libreoffice-core-4.1.6.2-2.mga4 libreoffice-pyuno-4.1.6.2-2.mga4 libreoffice-base-4.1.6.2-2.mga4 libreoffice-bsh-4.1.6.2-2.mga4 libreoffice-rhino-4.1.6.2-2.mga4 libreoffice-wiki-publisher-4.1.6.2-2.mga4 libreoffice-nlpsolver-4.1.6.2-2.mga4 libreoffice-ogltrans-4.1.6.2-2.mga4 libreoffice-presentation-minimizer-4.1.6.2-2.mga4 libreoffice-pdfimport-4.1.6.2-2.mga4 libreoffice-opensymbol-fonts-4.1.6.2-2.mga4 libreoffice-writer-4.1.6.2-2.mga4 libreoffice-emailmerge-4.1.6.2-2.mga4 libreoffice-calc-4.1.6.2-2.mga4 libreoffice-draw-4.1.6.2-2.mga4 libreoffice-impress-4.1.6.2-2.mga4 libreoffice-math-4.1.6.2-2.mga4 libreoffice-graphicfilter-4.1.6.2-2.mga4 libreoffice-xsltfilter-4.1.6.2-2.mga4 libreoffice-postgresql-4.1.6.2-2.mga4 libreoffice-ure-4.1.6.2-2.mga4 libreoffice-java-common-4.1.6.2-2.mga4 libreoffice-sdk-4.1.6.2-2.mga4 libreoffice-sdk-doc-4.1.6.2-2.mga4 libreoffice-headless-4.1.6.2-2.mga4 libreoffice-glade-4.1.6.2-2.mga4 libreoffice-kde-4.1.6.2-2.mga4 libreoffice-langpack-af-4.1.6.2-2.mga4 libreoffice-langpack-ar-4.1.6.2-2.mga4 libreoffice-langpack-as-4.1.6.2-2.mga4 libreoffice-langpack-bg-4.1.6.2-2.mga4 libreoffice-langpack-bn-4.1.6.2-2.mga4 libreoffice-langpack-br-4.1.6.2-2.mga4 libreoffice-langpack-ca-4.1.6.2-2.mga4 libreoffice-langpack-cs-4.1.6.2-2.mga4 libreoffice-langpack-cy-4.1.6.2-2.mga4 libreoffice-langpack-da-4.1.6.2-2.mga4 libreoffice-langpack-de-4.1.6.2-2.mga4 libreoffice-langpack-dz-4.1.6.2-2.mga4 libreoffice-langpack-el-4.1.6.2-2.mga4 libreoffice-langpack-en-4.1.6.2-2.mga4 libreoffice-langpack-es-4.1.6.2-2.mga4 libreoffice-langpack-et-4.1.6.2-2.mga4 libreoffice-langpack-eu-4.1.6.2-2.mga4 libreoffice-langpack-fa-4.1.6.2-2.mga4 libreoffice-langpack-fi-4.1.6.2-2.mga4 libreoffice-langpack-fr-4.1.6.2-2.mga4 libreoffice-langpack-ga-4.1.6.2-2.mga4 libreoffice-langpack-gl-4.1.6.2-2.mga4 libreoffice-langpack-gu-4.1.6.2-2.mga4 libreoffice-langpack-he-4.1.6.2-2.mga4 libreoffice-langpack-hi-4.1.6.2-2.mga4 libreoffice-langpack-hr-4.1.6.2-2.mga4 libreoffice-langpack-hu-4.1.6.2-2.mga4 libreoffice-langpack-it-4.1.6.2-2.mga4 libreoffice-langpack-ja-4.1.6.2-2.mga4 libreoffice-langpack-kk-4.1.6.2-2.mga4 libreoffice-langpack-kn-4.1.6.2-2.mga4 libreoffice-langpack-ko-4.1.6.2-2.mga4 libreoffice-langpack-lt-4.1.6.2-2.mga4 libreoffice-langpack-lv-4.1.6.2-2.mga4 libreoffice-langpack-mai-4.1.6.2-2.mga4 libreoffice-langpack-ml-4.1.6.2-2.mga4 libreoffice-langpack-mr-4.1.6.2-2.mga4 libreoffice-langpack-nb-4.1.6.2-2.mga4 libreoffice-langpack-nl-4.1.6.2-2.mga4 libreoffice-langpack-nn-4.1.6.2-2.mga4 libreoffice-langpack-nr-4.1.6.2-2.mga4 libreoffice-langpack-nso-4.1.6.2-2.mga4 libreoffice-langpack-or-4.1.6.2-2.mga4 libreoffice-langpack-pa-4.1.6.2-2.mga4 libreoffice-langpack-pl-4.1.6.2-2.mga4 libreoffice-langpack-pt_BR-4.1.6.2-2.mga4 libreoffice-langpack-pt-4.1.6.2-2.mga4 libreoffice-langpack-ro-4.1.6.2-2.mga4 libreoffice-langpack-ru-4.1.6.2-2.mga4 libreoffice-langpack-si-4.1.6.2-2.mga4 libreoffice-langpack-sk-4.1.6.2-2.mga4 libreoffice-langpack-sl-4.1.6.2-2.mga4 libreoffice-langpack-sr-4.1.6.2-2.mga4 libreoffice-langpack-ss-4.1.6.2-2.mga4 libreoffice-langpack-st-4.1.6.2-2.mga4 libreoffice-langpack-sv-4.1.6.2-2.mga4 libreoffice-langpack-ta-4.1.6.2-2.mga4 libreoffice-langpack-te-4.1.6.2-2.mga4 libreoffice-langpack-th-4.1.6.2-2.mga4 libreoffice-langpack-tn-4.1.6.2-2.mga4 libreoffice-langpack-tr-4.1.6.2-2.mga4 libreoffice-langpack-ts-4.1.6.2-2.mga4 libreoffice-langpack-uk-4.1.6.2-2.mga4 libreoffice-langpack-ve-4.1.6.2-2.mga4 libreoffice-langpack-xh-4.1.6.2-2.mga4 libreoffice-langpack-zh_CN-4.1.6.2-2.mga4 libreoffice-langpack-zh_TW-4.1.6.2-2.mga4 libreoffice-langpack-zu-4.1.6.2-2.mga4 autocorr-en-4.1.6.2-2.mga4 autocorr-af-4.1.6.2-2.mga4 autocorr-bg-4.1.6.2-2.mga4 autocorr-ca-4.1.6.2-2.mga4 autocorr-cs-4.1.6.2-2.mga4 autocorr-da-4.1.6.2-2.mga4 autocorr-de-4.1.6.2-2.mga4 autocorr-es-4.1.6.2-2.mga4 autocorr-fa-4.1.6.2-2.mga4 autocorr-fi-4.1.6.2-2.mga4 autocorr-fr-4.1.6.2-2.mga4 autocorr-ga-4.1.6.2-2.mga4 autocorr-hr-4.1.6.2-2.mga4 autocorr-hu-4.1.6.2-2.mga4 autocorr-is-4.1.6.2-2.mga4 autocorr-it-4.1.6.2-2.mga4 autocorr-ja-4.1.6.2-2.mga4 autocorr-ko-4.1.6.2-2.mga4 autocorr-lb-4.1.6.2-2.mga4 autocorr-lt-4.1.6.2-2.mga4 autocorr-mn-4.1.6.2-2.mga4 autocorr-nl-4.1.6.2-2.mga4 autocorr-pl-4.1.6.2-2.mga4 autocorr-pt-4.1.6.2-2.mga4 autocorr-ro-4.1.6.2-2.mga4 autocorr-ru-4.1.6.2-2.mga4 autocorr-sk-4.1.6.2-2.mga4 autocorr-sl-4.1.6.2-2.mga4 autocorr-sr-4.1.6.2-2.mga4 autocorr-sv-4.1.6.2-2.mga4 autocorr-tr-4.1.6.2-2.mga4 autocorr-vi-4.1.6.2-2.mga4 autocorr-zh-4.1.6.2-2.mga4 from libreoffice-4.1.6.2-2.mga4.src.rpm
CC: (none) => thierry.vignaudAssignee: thierry.vignaud => qa-bugs
Testing MGA4-64 on HP6555b Opened and run slideshow of 64 page .odp file with lots of animated text: all OK Opened and run slideshow of 64 page .pptx file with lots of animated text (this was in fact the original presentation): runs with all the hickups I found on previous versions of LibreOffice. Nothing new. In fact this presentation has problems in various versions of MS Office as well, so nothing to worry about. Opened multipage .ods file, looks good, exported this file to .xls: all OK Opened associated .odb file of above spreadsheet, run queries defined in odb: all OK. Opened a 36 page .odt file with some pictures in it. Shows OK. Makes also a valid .doc file of it. Tested remote control with Android smartphone: works OK
CC: (none) => herman.viaeneWhiteboard: (none) => MGA4-64-OK
In VirtualBox, M4, KDE, 32-bit Package(s) under test: libreoffice-base, libreoffice-core libreoffice-writer, libreoffice-calc, libreoffice-impress, libreoffice-draw, libreoffice-kde, libreoffice-math default install of libreoffice-base [root@localhost wilcal]# urpmi libreoffice-base Package libreoffice-base-4.1.6.2-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi libreoffice-core Package libreoffice-core-4.1.6.2-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi libreoffice-writer Package libreoffice-writer-4.1.6.2-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi libreoffice-calc Package libreoffice-calc-4.1.6.2-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi libreoffice-impress Package libreoffice-impress-4.1.6.2-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi libreoffice-draw Package libreoffice-draw-4.1.6.2-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi libreoffice-kde Package libreoffice-kde-4.1.6.2-1.mga4.i586 is already installed [root@localhost wilcal]# urpmi libreoffice-math Package libreoffice-math-4.1.6.2-1.mga4.i586 is already installed I used writer & calc and they work fine. Impress, Base & Draw open and run. I can print to a CUPS printer on the LAN. install libreoffice-base from updates_testing [root@localhost wilcal]# urpmi libreoffice-base Package libreoffice-base-4.1.6.2-2.mga4.i586 is already installed [root@localhost wilcal]# urpmi libreoffice-core Package libreoffice-core-4.1.6.2-2.mga4.i586 is already installed [root@localhost wilcal]# urpmi libreoffice-writer Package libreoffice-writer-4.1.6.2-2.mga4.i586 is already installed [root@localhost wilcal]# urpmi libreoffice-calc Package libreoffice-calc-4.1.6.2-2.mga4.i586 is already installed [root@localhost wilcal]# urpmi libreoffice-impress Package libreoffice-impress-4.1.6.2-2.mga4.i586 is already installed [root@localhost wilcal]# urpmi libreoffice-draw Package libreoffice-draw-4.1.6.2-2.mga4.i586 is already installed [root@localhost wilcal]# urpmi libreoffice-kde Package libreoffice-kde-4.1.6.2-2.mga4.i586 is already installed [root@localhost wilcal]# urpmi libreoffice-math Package libreoffice-math-4.1.6.2-2.mga4.i586 is already installed I used writer & calc and they work fine. Impress, Base & Draw open and run. I can print to a CUPS printer on the LAN. Test platform: Intel Core i7-2600K Sandy Bridge 3.4GHz GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB RTL8111/8168B PCI Express 1Gbit Ethernet DRAM 16GB (4 x 4GB) Mageia 4 64-bit, Nvidia driver virtualbox-4.3.10-1.1.mga4.x86_64 virtualbox-guest-additions-4.3.10-1.1.mga4.x86_64
CC: (none) => wilcal.int
Whiteboard: MGA4-64-OK => MGA4-32-OK MGA4-64-OK
I'll validate this in 24-hours unless someone has issues.
Advisory uploaded.
Whiteboard: MGA4-32-OK MGA4-64-OK => MGA4-32-OK MGA4-64-OK advisory
This update works fine. Testing complete for mga4 32-bit & 64-bit Validating the update. Could someone from the sysadmin team push this to updates. Thanks
Keywords: (none) => validated_updateCC: (none) => sysadmin-bugs
An update for this issue has been pushed to Mageia Updates repository. http://advisories.mageia.org/MGASA-2014-0505.html
Status: NEW => RESOLVEDResolution: (none) => FIXED