Product Errata

RLSA-2024:1514

Important: libreoffice security fix update

Topic

An update is available for libreoffice.

This update affects Rocky Linux 8.

A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Description

LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite.

Security Fix(es):

* libreoffice: Improper Input Validation leading to arbitrary gstreamer plugin execution (CVE-2023-6185)

* libreoffice: Insufficient macro permission validation leading to macro execution (CVE-2023-6186)

Issued: 3/27/2024

Type: Security

Severity: Important

Affected Product

  • Rocky Linux 8

References

  • No references