user/libreoffice: multiple vulnerabilities
Bugzilla ID | 151 |
Alias(es) | CVE-2019-9848, CVE-2019-9849, CVE-2019-9850, CVE-2019-9851, CVE-2019-9852, CVE-2019-9853, CVE-2019-9854 |
Reporter | Max Rees (sroracle) |
Assignee | Max Rees (sroracle) |
Reported | 2019-07-31 07:12:57 -0500 |
Modified | 2020-02-25 17:41:06 -0600 |
Status | RESOLVED FIXED |
Version | 1.0-BETA3 |
Hardware | Adélie Linux / All |
Importance | --- / normal |
Description
CVE-2019-9848: https://nvd.nist.gov/vuln/detail/CVE-2019-9848
LibreOffice has a feature where documents can specify that pre-
installed scripts can be executed on various document events such as
mouse-over, etc. LibreOffice is typically also bundled with LibreLogo,
a programmable turtle vector graphics script, which can be manipulated
into executing arbitrary python commands. By using the document event
feature to trigger LibreLogo to execute python contained within a
document a malicious document could be constructed which would execute
arbitrary python commands silently without warning. In the fixed
versions, LibreLogo cannot be called from a document event handler.
This issue affects: Document Foundation LibreOffice versions prior to
6.2.5.
CVE-2019-9849: https://nvd.nist.gov/vuln/detail/CVE-2019-9849
LibreOffice has a 'stealth mode' in which only documents from
locations deemed 'trusted' are allowed to retrieve remote resources.
This mode is not the default mode, but can be enabled by users who
want to disable LibreOffice's ability to include remote resources
within a document. A flaw existed where bullet graphics were omitted
from this protection prior to version 6.2.5. This issue affects:
Document Foundation LibreOffice versions prior to 6.2.5.