Debian Security Advisory
DSA-4483-1 libreoffice -- security update
- Date Reported:
- 16 Jul 2019
- Affected Packages:
- Security database references:
- In Mitre's CVE dictionary: CVE-2019-9848, CVE-2019-9849.
- More information:
Two security issues have been discovered in LibreOffice:
Nils Emmerich discovered that malicious documents could execute arbitrary Python code via LibreLogo.
Matei Badanoiu discovered that the stealth mode did not apply to bullet graphics.
For the oldstable distribution (stretch), these problems have been fixed in version 1:5.2.7-1+deb9u9.
For the stable distribution (buster), these problems have been fixed in version 1:6.1.5-3+deb10u2.
We recommend that you upgrade your libreoffice packages.
For the detailed security status of libreoffice please refer to its security tracker page at: https://security-tracker.debian.org/tracker/libreoffice