USN-5661-1: LibreOffice vulnerabilities

Releases

• Ubuntu 20.04 LTS

Packages

• libreoffice - Office productivity suite

Details

It was discovered that LibreOffice incorrectly validated macro signatures.
If a user were tricked into opening a specially crafted document, a remote
attacker could possibly use this issue to execute arbitrary macros.
(CVE-2022-26305)

It was discovered that Libreoffice incorrectly handled encrypting the
master key provided by the user for storing passwords for web connections.
A local attacker could possibly use this issue to obtain access to
passwords stored in the user's configuration data. (CVE-2022-26306,
CVE-2022-26307)

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 20.04

• libreoffice - 1:6.4.7-0ubuntu0.20.04.5

In general, a standard system update will make all the necessary changes.

References

• CVE-2022-26307
• CVE-2022-26306
• CVE-2022-26305

Related notices

• USN-5694-1: libreoffice-wiki-publisher, libreoffice-help-om, libreoffice-help-sk, libreoffice-style-sukapura, libreoffice-subsequentcheckbase, libreoffice-style-yaru, libreoffice-help-fi, libreoffice-l10n-be, libreoffice-l10n-vi, libreoffice-l10n-sr, libunoloader-java, libreoffice-help-id, libreoffice-l10n-bn, libreoffice-l10n-uk, libreoffice-help-common, libreoffice-style-karasa-jaga, libreoffice-style-elementary, ure, libreoffice-l10n-nn, libreoffice-core-nogui, libreoffice-l10n-nb, libreoffice-l10n-tr, libreoffice-gnome, libreoffice-l10n-ro, libreoffice, libreoffice-nogui, libreoffice-report-builder, libreoffice-l10n-es, libreoffice-l10n-br, libreoffice-l10n-za, libreoffice-help-dz, libreoffice-script-provider-js, libreoffice-writer-nogui, libreoffice-help-zh-cn, libreoffice-ogltrans, libreoffice-calc, libreoffice-l10n-zu, libreoffice-l10n-eu, libreoffice-help-sl, libreoffice-l10n-or, libreoffice-l10n-is, libreoffice-nlpsolver, liblibreoffice-java, libreoffice-help-hi, libreoffice-help-hu, libreoffice-help-pl, libreoffice-help-en-gb, libreoffice-draw-nogui, libreoffice-l10n-bs, libreoffice-style-colibre, libunoil-java, libreoffice-impress, libreoffice-math, libreoffice-l10n-sv, libreoffice-l10n-fi, libreofficekit-dev, libreoffice-common, libreoffice-help-ja, libreoffice-help-sv, libreoffice-l10n-in, libreoffice-mysql-connector, libreoffice-l10n-ga, libreoffice-l10n-gl, libreoffice-l10n-kmr, libreoffice-avmedia-backend-gstreamer, libuno-sal3, libreoffice-l10n-ka, libreoffice-l10n-da, libreoffice-l10n-ca, libreoffice-l10n-eo, libreoffice-help-da, libreoffice-gtk2, libreoffice-l10n-he, libreoffice-l10n-bg, libreoffice-l10n-mr, libreoffice-script-provider-python, libreoffice-smoketest-data, uno-libs-private, libreoffice-base-drivers, libreoffice-l10n-lt, libreoffice-l10n-tn, libreoffice-help-ko, libreoffice-l10n-am, libjurt-java, libreoffice-l10n-ja, libreoffice-calc-nogui, libreoffice-l10n-zh-tw, libreoffice-l10n-cy, libreoffice-evolution, libreoffice-l10n-en-za, libreoffice-l10n-om, libreoffice-librelogo, libreoffice-l10n-pt, libreoffice-style-tango, libjuh-java, libreoffice-l10n-et, libreoffice-l10n-ast, libreoffice-l10n-mn, libridl-java, libreoffice-gtk3, libreoffice-impress-nogui, libreoffice-kde4, libreoffice-sdbc-mysql, libofficebean-java, ure-java, libreoffice-officebean, libreoffice-systray, libreoffice-l10n-de, libreoffice-l10n-id, libuno-salhelpergcc3-3, libreoffice-help-ru, libreoffice-java-common, libreoffice-script-provider-bsh, libreoffice-l10n-sl, libreoffice-help-vi, libreoffice-l10n-ve, libreoffice-l10n-gd, libreoffice-l10n-sk, libreoffice-base, libreoffice-help-cs, libreoffice-l10n-ts, libreoffice-l10n-hu, libreoffice-l10n-xh, libreoffice-kde, libreoffice-l10n-el, libreoffice-l10n-dz, libuno-cppu3, libreoffice-qt5, libreoffice-writer, libreoffice-help-de, libreoffice-help-pt-br, libreoffice-l10n-tg, libreofficekit-data, liblibreofficekitgtk, libreoffice-l10n-ss, libreoffice-report-builder-bin-nogui, libreoffice-help-pt, libreoffice-help-km, libreoffice-l10n-as, libreoffice-base-core, libreoffice-l10n-ar, libreoffice-l10n-ml, libreoffice-l10n-si, libreoffice-report-builder-bin, libreoffice-help-ca, libreoffice-kf5, libreoffice-l10n-ko, libreoffice-core, libreoffice-gtk, libreoffice-base-nogui, libreoffice-help-eu, libreoffice-help-fr, libreoffice-l10n-pl, libreoffice-style-oxygen, libreoffice-l10n-szl, libreoffice-l10n-te, libreoffice-sdbc-postgresql, libreoffice-help-zh-tw, libreoffice-l10n-km, libreoffice-l10n-ru, libreoffice-l10n-lv, libreoffice-l10n-rw, libreoffice-sdbc-firebird, libuno-purpenvhelpergcc3-3, libreoffice-l10n-pa-in, libreoffice-math-nogui, libreoffice-style-sifr, libreoffice-help-it, uno-libs3, libreoffice-l10n-ug, fonts-opensymbol, libreoffice-help-et, libreoffice-dev, libreoffice-l10n-it, libreoffice-l10n-nl, libreoffice-l10n-st, libreoffice-l10n-fa, libreoffice-help-el, libreoffice-l10n-mk, libreoffice-pdfimport, libreoffice-l10n-cs, libreoffice-dev-common, python3-access2base, libreoffice-l10n-gug, libreoffice-l10n-ta, libreoffice-l10n-gu, libreoffice-l10n-hr, libreoffice-style-hicontrast, libreoffice-l10n-zh-cn, libreoffice-l10n-nso, libreoffice-style-breeze, libreoffice-help-tr, libreoffice-l10n-af, libreoffice-l10n-en-gb, libreoffice-dev-gui, gir1.2-lokdocview-0.1, libreoffice-l10n-uz, libreoffice-l10n-kn, libreoffice-l10n-fr, libreoffice-style-galaxy, libreoffice-l10n-ne, libreoffice-l10n-th, libreoffice-l10n-kk, libreoffice-help-en-us, libreoffice-style-human, libreoffice-help-nl, libreoffice-kde5, libreoffice-l10n-hi, libreoffice-help-gl, libreoffice-help-es, libreoffice-plasma, libreoffice-sdbc-hsqldb, libuno-cppuhelpergcc3-3, libreoffice-l10n-nr, libreoffice-l10n-oc, libreoffice-dev-doc, python3-uno, libreoffice-draw, libreoffice-l10n-pt-br