USN-5661-1: LibreOffice vulnerabilities

Releases

• Ubuntu 20.04 LTS

Packages

• libreoffice - Office productivity suite

Details

It was discovered that LibreOffice incorrectly validated macro signatures.
If a user were tricked into opening a specially crafted document, a remote
attacker could possibly use this issue to execute arbitrary macros.
(CVE-2022-26305)

It was discovered that Libreoffice incorrectly handled encrypting the
master key provided by the user for storing passwords for web connections.
A local attacker could possibly use this issue to obtain access to
passwords stored in the user's configuration data. (CVE-2022-26306,
CVE-2022-26307)

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 20.04

• libreoffice - 1:6.4.7-0ubuntu0.20.04.5

In general, a standard system update will make all the necessary changes.

References

• CVE-2022-26307
• CVE-2022-26306
• CVE-2022-26305

Related notices

• USN-5694-1: libreoffice-l10n-is, libreoffice-gtk3, libreoffice-help-de, libreoffice-report-builder, libreoffice-l10n-de, libreoffice-l10n-cs, libreoffice-l10n-in, libreoffice-style-sifr, ure-java, libreoffice-l10n-hr, libreoffice-help-ru, libreoffice-l10n-it, gir1.2-lokdocview-0.1, libreoffice-l10n-fa, libreoffice-l10n-zh-tw, libreoffice-l10n-en-za, libreoffice-l10n-bg, libreoffice-writer-nogui, libreoffice-core-nogui, libreoffice-l10n-he, libreoffice-l10n-nb, libreoffice-ogltrans, libreoffice-help-hu, libreoffice-dev-common, libreoffice-impress, libreoffice-l10n-en-gb, libreoffice-l10n-af, libreoffice-gtk2, libreoffice-help-id, libreoffice-kde, libreoffice-l10n-cy, libreoffice-math, libreoffice-l10n-zu, libreoffice-help-es, libreoffice-l10n-eu, libreoffice-pdfimport, libreoffice-l10n-gu, libreoffice-l10n-da, libreoffice-l10n-ast, libreoffice-l10n-xh, libreoffice-qt5, libreoffice-help-common, libreoffice-l10n-or, libreoffice-core, libuno-purpenvhelpergcc3-3, libreoffice-style-breeze, python3-access2base, libreoffice-gnome, libreoffice-plasma, libreoffice-report-builder-bin, libreoffice-evolution, libreoffice-help-da, libuno-salhelpergcc3-3, libreoffice-style-hicontrast, libreoffice-sdbc-postgresql, libreoffice-l10n-uz, libreoffice-l10n-st, libreoffice-l10n-nso, libreoffice-l10n-sk, libreoffice-sdbc-mysql, libreoffice-calc, libreoffice-l10n-lt, libreofficekit-dev, libreoffice-l10n-am, libreoffice-l10n-gl, libreoffice-kde4, libreoffice-help-hi, libreoffice-avmedia-backend-gstreamer, libreoffice-l10n-uk, libreoffice-l10n-fi, libreoffice-nogui, libreoffice-common, libreoffice-l10n-za, libreoffice-l10n-pt-br, libofficebean-java, libreoffice-l10n-szl, libreoffice-help-fr, libreoffice-nlpsolver, libreoffice-l10n-id, libreoffice-style-oxygen, libreoffice-help-ja, libreoffice-l10n-ar, libreoffice-dev-gui, libreoffice-l10n-eo, libreoffice-sdbc-hsqldb, libreoffice-l10n-km, libreoffice-l10n-ml, libreoffice-help-tr, libreoffice-l10n-tg, libreoffice-l10n-mk, libreoffice-l10n-pa-in, libreoffice-l10n-ru, libreoffice-l10n-fr, libreoffice-sdbc-firebird, libreoffice-impress-nogui, libreoffice-style-galaxy, libunoloader-java, libreoffice-l10n-vi, libreoffice-l10n-bn, libreoffice-l10n-ts, libreoffice-help-en-us, libreoffice-l10n-sv, libreoffice-officebean, libreoffice-writer, libreoffice-l10n-ga, libreoffice-help-dz, libreoffice-base-nogui, libreoffice-help-km, libreoffice-dev, libreoffice-help-gl, libreoffice-wiki-publisher, libreoffice-base-core, libreoffice-kf5, libreoffice-l10n-ko, libreoffice-l10n-nr, libreoffice-l10n-om, libreoffice-help-en-gb, libreoffice-base, libreoffice-l10n-sl, libreoffice-style-tango, libreoffice-l10n-et, libreoffice-draw-nogui, libreoffice-l10n-mr, libreoffice-l10n-pt, libreoffice-calc-nogui, libreoffice-help-pl, libreoffice-help-eu, libreoffice-help-zh-cn, libreoffice-librelogo, libreoffice-mysql-connector, libreoffice-l10n-ro, libreoffice-help-ko, libreoffice-systray, libreoffice-style-karasa-jaga, libreoffice-l10n-bs, libreoffice-help-sk, libreoffice-help-el, libreoffice-help-om, libreoffice-l10n-lv, libreoffice-l10n-gug, libreoffice-dev-doc, libuno-sal3, libreoffice-l10n-pl, libreoffice-smoketest-data, libreoffice-l10n-ss, libreoffice-style-sukapura, libridl-java, libreoffice-subsequentcheckbase, libreoffice-l10n-ta, libreoffice-style-human, libreoffice-help-zh-tw, libreoffice-help-pt, liblibreoffice-java, libreoffice-gtk, liblibreofficekitgtk, libreoffice-help-et, libreoffice-l10n-th, libreoffice-l10n-kn, libreoffice-l10n-br, libreoffice, libreoffice-script-provider-python, libreoffice-style-yaru, libreoffice-l10n-rw, fonts-opensymbol, libreoffice-help-it, libreoffice-l10n-es, libreoffice-script-provider-js, libreoffice-l10n-oc, libuno-cppuhelpergcc3-3, libreoffice-l10n-mn, libreoffice-report-builder-bin-nogui, uno-libs-private, libjurt-java, libreoffice-style-colibre, libreoffice-java-common, libreoffice-l10n-si, libreoffice-l10n-te, libreoffice-help-ca, libreoffice-l10n-ka, libreoffice-l10n-tn, libreoffice-l10n-ug, libreoffice-help-nl, libreoffice-l10n-nn, libreoffice-l10n-tr, libreoffice-l10n-nl, libreoffice-l10n-hi, libreofficekit-data, libreoffice-l10n-gd, libreoffice-l10n-zh-cn, libreoffice-l10n-hu, python3-uno, libreoffice-l10n-kmr, libreoffice-base-drivers, libreoffice-l10n-as, libuno-cppu3, libreoffice-script-provider-bsh, libreoffice-l10n-ne, libjuh-java, libunoil-java, libreoffice-kde5, libreoffice-l10n-el, libreoffice-l10n-be, libreoffice-draw, libreoffice-help-cs, uno-libs3, libreoffice-l10n-sr, libreoffice-l10n-kk, libreoffice-help-pt-br, libreoffice-math-nogui, libreoffice-help-vi, ure, libreoffice-l10n-ca, libreoffice-style-elementary, libreoffice-l10n-dz, libreoffice-l10n-ve, libreoffice-l10n-ja, libreoffice-help-fi, libreoffice-help-sv, libreoffice-help-sl