Debian has issued an advisory on April 25: https://www.debian.org/security/2015/dsa-3236 Ubuntu has also issued an advisory for this today (April 27): http://www.ubuntu.com/usn/usn-2578-1/ According to the Ubuntu/Launchpad bug, this issue is fixed upstream in 4.4.2 (already in Cauldron) and 4.3.7. Ubuntu apparently updated to 4.3.7 RC2 to fix it, and Debian apparently has a patch for 4.3.3. Updating Mageia 4 to 4.3.7 would probably be the most sensible course of action for us. Fedora 21 has done just that in git. Reproducible: Steps to Reproduce:
URL: (none) => http://lwn.net/Vulnerabilities/642025/
Fedora has issued an advisory for this on April 28: https://lists.fedoraproject.org/pipermail/package-announce/2015-April/156582.html
upload in progress...
package is uploaded
Thanks Thierry! Advisory: ======================== Updated libreoffice packages fix security vulnerability: The HWP filter in LibreOffice before 4.3.7 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP document, which triggers an out-of-bounds write (CVE-2015-1774). References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1774 http://www.libreoffice.org/about-us/security/advisories/cve-2015-1774 https://lists.fedoraproject.org/pipermail/package-announce/2015-April/156582.html ======================== Updated packages in core/updates_testing: ======================== libreoffice-4.3.7.2-1.mga4 libreoffice-filters-4.3.7.2-1.mga4 libreoffice-core-4.3.7.2-1.mga4 libreoffice-pyuno-4.3.7.2-1.mga4 libreoffice-base-4.3.7.2-1.mga4 libreoffice-bsh-4.3.7.2-1.mga4 libreoffice-officebean-4.3.7.2-1.mga4 libreoffice-rhino-4.3.7.2-1.mga4 libreoffice-wiki-publisher-4.3.7.2-1.mga4 libreoffice-nlpsolver-4.3.7.2-1.mga4 libreoffice-ogltrans-4.3.7.2-1.mga4 libreoffice-pdfimport-4.3.7.2-1.mga4 libreoffice-opensymbol-fonts-4.3.7.2-1.mga4 libreoffice-writer-4.3.7.2-1.mga4 libreoffice-emailmerge-4.3.7.2-1.mga4 libreoffice-calc-4.3.7.2-1.mga4 libreoffice-draw-4.3.7.2-1.mga4 libreoffice-impress-4.3.7.2-1.mga4 libreoffice-math-4.3.7.2-1.mga4 libreoffice-graphicfilter-4.3.7.2-1.mga4 libreoffice-xsltfilter-4.3.7.2-1.mga4 libreoffice-postgresql-4.3.7.2-1.mga4 libreoffice-ure-4.3.7.2-1.mga4 libreoffice-java-common-4.3.7.2-1.mga4 libreoffice-sdk-4.3.7.2-1.mga4 libreoffice-sdk-doc-4.3.7.2-1.mga4 libreoffice-headless-4.3.7.2-1.mga4 libreoffice-glade-4.3.7.2-1.mga4 libreoffice-librelogo-4.3.7.2-1.mga4 libreoffice-kde-4.3.7.2-1.mga4 libreoffice-langpack-en-4.3.7.2-1.mga4 libreoffice-langpack-af-4.3.7.2-1.mga4 libreoffice-langpack-ar-4.3.7.2-1.mga4 libreoffice-langpack-as-4.3.7.2-1.mga4 libreoffice-langpack-bg-4.3.7.2-1.mga4 libreoffice-langpack-bn-4.3.7.2-1.mga4 libreoffice-langpack-br-4.3.7.2-1.mga4 libreoffice-langpack-ca-4.3.7.2-1.mga4 libreoffice-langpack-cs-4.3.7.2-1.mga4 libreoffice-langpack-cy-4.3.7.2-1.mga4 libreoffice-langpack-da-4.3.7.2-1.mga4 libreoffice-langpack-de-4.3.7.2-1.mga4 libreoffice-langpack-dz-4.3.7.2-1.mga4 libreoffice-langpack-el-4.3.7.2-1.mga4 libreoffice-langpack-es-4.3.7.2-1.mga4 libreoffice-langpack-et-4.3.7.2-1.mga4 libreoffice-langpack-eu-4.3.7.2-1.mga4 libreoffice-langpack-fa-4.3.7.2-1.mga4 libreoffice-langpack-fi-4.3.7.2-1.mga4 libreoffice-langpack-fr-4.3.7.2-1.mga4 libreoffice-langpack-ga-4.3.7.2-1.mga4 libreoffice-langpack-gl-4.3.7.2-1.mga4 libreoffice-langpack-gu-4.3.7.2-1.mga4 libreoffice-langpack-he-4.3.7.2-1.mga4 libreoffice-langpack-hi-4.3.7.2-1.mga4 libreoffice-langpack-hr-4.3.7.2-1.mga4 libreoffice-langpack-hu-4.3.7.2-1.mga4 libreoffice-langpack-it-4.3.7.2-1.mga4 libreoffice-langpack-ja-4.3.7.2-1.mga4 libreoffice-langpack-kk-4.3.7.2-1.mga4 libreoffice-langpack-kn-4.3.7.2-1.mga4 libreoffice-langpack-ko-4.3.7.2-1.mga4 libreoffice-langpack-lt-4.3.7.2-1.mga4 libreoffice-langpack-lv-4.3.7.2-1.mga4 libreoffice-langpack-mai-4.3.7.2-1.mga4 libreoffice-langpack-ml-4.3.7.2-1.mga4 libreoffice-langpack-mr-4.3.7.2-1.mga4 libreoffice-langpack-nb-4.3.7.2-1.mga4 libreoffice-langpack-nl-4.3.7.2-1.mga4 libreoffice-langpack-nn-4.3.7.2-1.mga4 libreoffice-langpack-nr-4.3.7.2-1.mga4 libreoffice-langpack-nso-4.3.7.2-1.mga4 libreoffice-langpack-or-4.3.7.2-1.mga4 libreoffice-langpack-pa-4.3.7.2-1.mga4 libreoffice-langpack-pl-4.3.7.2-1.mga4 libreoffice-langpack-pt_BR-4.3.7.2-1.mga4 libreoffice-langpack-pt-4.3.7.2-1.mga4 libreoffice-langpack-ro-4.3.7.2-1.mga4 libreoffice-langpack-ru-4.3.7.2-1.mga4 libreoffice-langpack-si-4.3.7.2-1.mga4 libreoffice-langpack-sk-4.3.7.2-1.mga4 libreoffice-langpack-sl-4.3.7.2-1.mga4 libreoffice-langpack-sr-4.3.7.2-1.mga4 libreoffice-langpack-ss-4.3.7.2-1.mga4 libreoffice-langpack-st-4.3.7.2-1.mga4 libreoffice-langpack-sv-4.3.7.2-1.mga4 libreoffice-langpack-ta-4.3.7.2-1.mga4 libreoffice-langpack-te-4.3.7.2-1.mga4 libreoffice-langpack-th-4.3.7.2-1.mga4 libreoffice-langpack-tn-4.3.7.2-1.mga4 libreoffice-langpack-tr-4.3.7.2-1.mga4 libreoffice-langpack-ts-4.3.7.2-1.mga4 libreoffice-langpack-uk-4.3.7.2-1.mga4 libreoffice-langpack-ve-4.3.7.2-1.mga4 libreoffice-langpack-xh-4.3.7.2-1.mga4 libreoffice-langpack-zh_CN-4.3.7.2-1.mga4 libreoffice-langpack-zh_TW-4.3.7.2-1.mga4 libreoffice-langpack-zu-4.3.7.2-1.mga4 autocorr-en-4.3.7.2-1.mga4 autocorr-af-4.3.7.2-1.mga4 autocorr-bg-4.3.7.2-1.mga4 autocorr-ca-4.3.7.2-1.mga4 autocorr-cs-4.3.7.2-1.mga4 autocorr-da-4.3.7.2-1.mga4 autocorr-de-4.3.7.2-1.mga4 autocorr-es-4.3.7.2-1.mga4 autocorr-fa-4.3.7.2-1.mga4 autocorr-fi-4.3.7.2-1.mga4 autocorr-fr-4.3.7.2-1.mga4 autocorr-ga-4.3.7.2-1.mga4 autocorr-hr-4.3.7.2-1.mga4 autocorr-hu-4.3.7.2-1.mga4 autocorr-is-4.3.7.2-1.mga4 autocorr-it-4.3.7.2-1.mga4 autocorr-ja-4.3.7.2-1.mga4 autocorr-ko-4.3.7.2-1.mga4 autocorr-lb-4.3.7.2-1.mga4 autocorr-lt-4.3.7.2-1.mga4 autocorr-mn-4.3.7.2-1.mga4 autocorr-nl-4.3.7.2-1.mga4 autocorr-pl-4.3.7.2-1.mga4 autocorr-pt-4.3.7.2-1.mga4 autocorr-ro-4.3.7.2-1.mga4 autocorr-ru-4.3.7.2-1.mga4 autocorr-sk-4.3.7.2-1.mga4 autocorr-sl-4.3.7.2-1.mga4 autocorr-sr-4.3.7.2-1.mga4 autocorr-sv-4.3.7.2-1.mga4 autocorr-tr-4.3.7.2-1.mga4 autocorr-vi-4.3.7.2-1.mga4 autocorr-zh-4.3.7.2-1.mga4 from libreoffice-4.3.7.2-1.mga4.src.rpm
Assignee: thierry.vignaud => qa-bugsSeverity: normal => major
Trying MGA4 x64. Updated the following pkgs from Updates Testing: libreoffice-base-4.3.7.2-1.mga4 libreoffice-calc-4.3.7.2-1.mga4 libreoffice-writer-4.3.7.2-1.mga4 libreoffice-headless-4.3.7.2-1.mga4 libreoffice-xsltfilter-4.3.7.2-1.mga4 libreoffice-core-4.3.7.2-1.mga4 libreoffice-pdfimport-4.3.7.2-1.mga4 libreoffice-kde-4.3.7.2-1.mga4 libreoffice-ure-4.3.7.2-1.mga4 libreoffice-impress-4.3.7.2-1.mga4 libreoffice-emailmerge-4.3.7.2-1.mga4 libreoffice-opensymbol-fonts-4.3.7.2-1.mga4 libreoffice-graphicfilter-4.3.7.2-1.mga4 libreoffice-wiki-publisher-4.3.7.2-1.mga4 libreoffice-pyuno-4.3.7.2-1.mga4 libreoffice-langpack-en-4.3.7.2-1.mga4 libreoffice-ogltrans-4.3.7.2-1.mga4 libreoffice-langpack-cy-4.3.7.2-1.mga4 libreoffice-math-4.3.7.2-1.mga4 libreoffice-draw-4.3.7.2-1.mga4 Played with existing .odt documents in Writer, Calc minimally, Draw; and imported a couple of fiddly formatted AbiWord documents which displayed correctly; and saved these as .odt, re-opened them, they still look OK. [This coincidentally resolves a long-standing Writer problem related to importing AbiWord documents, then destroying them on saving/re-opening as .odt]. Thumbs up from me, the update OK. (I could *not* find any ready-made .hpw documents on the Internet to try).
CC: (none) => lewyssmith
Whiteboard: (none) => MGA4-64-OK
I tested Writer, Calc, and Impress on i586. It looks really good.
Whiteboard: MGA4-64-OK => MGA4-64-OK MGA4-32-OK
Validating. Advisory uploaded. Please push to 4 updates Thanks!
Keywords: (none) => validated_updateWhiteboard: MGA4-64-OK MGA4-32-OK => advisory MGA4-64-OK MGA4-32-OKCC: (none) => sysadmin-bugs
An update for this issue has been pushed to Mageia Updates repository. http://advisories.mageia.org/MGASA-2015-0174.html
Status: NEW => RESOLVEDResolution: (none) => FIXED