LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various script events such as mouse-over, document-open etc. Access is intended to be restricted to scripts under the share/Scripts/python, user/Scripts/python sub-directories of the LibreOffice install. Protection was added, to address CVE-2019-9852, to avoid a directory traversal attack where scripts in arbitrary locations on the file system could be executed by employing a URL encoding attack to defeat the path verification step. However this protection could be bypassed by taking advantage of a flaw in how LibreOffice assembled the final script URL location directly from components of the passed in path as opposed to solely from the sanitized output of the path verification step. This issue affects: Document Foundation LibreOffice 6.2 versions prior to 6.2.7; 6.3 versions prior to 6.3.1.

The version of libreoffice installed on the remote host is prior to 5.3.6.1-21. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2LIBREOFFICE-2023-002 advisory.

  - LibreOffice has a feature where documents can specify that pre-installed scripts can be executed on     various document events such as mouse-over, etc. LibreOffice is typically also bundled with LibreLogo, a     programmable turtle vector graphics script, which can be manipulated into executing arbitrary python     commands. By using the document event feature to trigger LibreLogo to execute python contained within a     document a malicious document could be constructed which would execute arbitrary python commands silently     without warning. In the fixed versions, LibreLogo cannot be called from a document event handler. This     issue affects: Document Foundation LibreOffice versions prior to 6.2.5. (CVE-2019-9848)

  - LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to     retrieve remote resources. This mode is not the default mode, but can be enabled by users who want to     disable LibreOffice's ability to include remote resources within a document. A flaw existed where bullet     graphics were omitted from this protection prior to version 6.2.5. This issue affects: Document Foundation     LibreOffice versions prior to 6.2.5. (CVE-2019-9849)

  - LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can     execute arbitrary python commands contained with the document it is launched from. LibreOffice also has a     feature where documents can specify that pre-installed scripts can be executed on various document script     events such as mouse-over, etc. Protection was added, to address CVE-2019-9848, to block calling LibreLogo     from script event handers. However an insufficient url validation vulnerability in LibreOffice allowed     malicious to bypass that protection and again trigger calling LibreLogo from script event handlers. This     issue affects: Document Foundation LibreOffice versions prior to 6.2.6. (CVE-2019-9850)

  - LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can     execute arbitrary python commands contained with the document it is launched from. Protection was added,     to address CVE-2019-9848, to block calling LibreLogo from document event script handers, e.g. mouse over.
    However LibreOffice also has a separate feature where documents can specify that pre-installed scripts can     be executed on various global script events such as document-open, etc. In the fixed versions, global     script event handlers are validated equivalently to document script event handlers. This issue affects:
    Document Foundation LibreOffice versions prior to 6.2.6. (CVE-2019-9851)

  - LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various     script events such as mouse-over, document-open etc. Access is intended to be restricted to scripts under     the share/Scripts/python, user/Scripts/python sub-directories of the LibreOffice install. Protection was     added, to address CVE-2018-16858, to avoid a directory traversal attack where scripts in arbitrary     locations on the file system could be executed. However this new protection could be bypassed by a URL     encoding attack. In the fixed versions, the parsed url describing the script location is correctly encoded     before further processing. This issue affects: Document Foundation LibreOffice versions prior to 6.2.6.
    (CVE-2019-9852)

  - LibreOffice documents can contain macros. The execution of those macros is controlled by the document     security settings, typically execution of macros are blocked by default. A URL decoding flaw existed in     how the urls to the macros within the document were processed and categorized, resulting in the     possibility to construct a document where macro execution bypassed the security settings. The documents     were correctly detected as containing macros, and prompted the user to their existence within the     documents, but macros within the document were subsequently not controlled by the security settings     allowing arbitrary macro execution This issue affects: LibreOffice 6.2 series versions prior to 6.2.7;
    LibreOffice 6.3 series versions prior to 6.3.1. (CVE-2019-9853)

  - LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various     script events such as mouse-over, document-open etc. Access is intended to be restricted to scripts under     the share/Scripts/python, user/Scripts/python sub-directories of the LibreOffice install. Protection was     added, to address CVE-2019-9852, to avoid a directory traversal attack where scripts in arbitrary     locations on the file system could be executed by employing a URL encoding attack to defeat the path     verification step. However this protection could be bypassed by taking advantage of a flaw in how     LibreOffice assembled the final script URL location directly from components of the passed in path as     opposed to solely from the sanitized output of the path verification step. This issue affects: Document     Foundation LibreOffice 6.2 versions prior to 6.2.7; 6.3 versions prior to 6.3.1. (CVE-2019-9854)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1151 advisory.

  - LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to     retrieve remote resources. This mode is not the default mode, but can be enabled by users who want to     disable LibreOffice's ability to include remote resources within a document. A flaw existed where bullet     graphics were omitted from this protection prior to version 6.2.5. This issue affects: Document Foundation     LibreOffice versions prior to 6.2.5. (CVE-2019-9849)

  - LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can     execute arbitrary python commands contained with the document it is launched from. LibreOffice also has a     feature where documents can specify that pre-installed scripts can be executed on various document script     events such as mouse-over, etc. Protection was added, to address CVE-2019-9848, to block calling LibreLogo     from script event handers. However an insufficient url validation vulnerability in LibreOffice allowed     malicious to bypass that protection and again trigger calling LibreLogo from script event handlers. This     issue affects: Document Foundation LibreOffice versions prior to 6.2.6. (CVE-2019-9850)

  - LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can     execute arbitrary python commands contained with the document it is launched from. Protection was added,     to address CVE-2019-9848, to block calling LibreLogo from document event script handers, e.g. mouse over.
    However LibreOffice also has a separate feature where documents can specify that pre-installed scripts can     be executed on various global script events such as document-open, etc. In the fixed versions, global     script event handlers are validated equivalently to document script event handlers. This issue affects:
    Document Foundation LibreOffice versions prior to 6.2.6. (CVE-2019-9851)

  - LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various     script events such as mouse-over, document-open etc. Access is intended to be restricted to scripts under     the share/Scripts/python, user/Scripts/python sub-directories of the LibreOffice install. Protection was     added, to address CVE-2019-9852, to avoid a directory traversal attack where scripts in arbitrary     locations on the file system could be executed by employing a URL encoding attack to defeat the path     verification step. However this protection could be bypassed by taking advantage of a flaw in how     LibreOffice assembled the final script URL location directly from components of the passed in path as     opposed to solely from the sanitized output of the path verification step. This issue affects: Document     Foundation LibreOffice 6.2 versions prior to 6.2.7; 6.3 versions prior to 6.3.1. (CVE-2019-9854)

  - LibreOffice has a feature where documents can specify that pre-installed scripts can be executed on     various document events such as mouse-over, etc. LibreOffice is typically also bundled with LibreLogo, a     programmable turtle vector graphics script, which can be manipulated into executing arbitrary python     commands. By using the document event feature to trigger LibreLogo to execute python contained within a     document a malicious document could be constructed which would execute arbitrary python commands silently     without warning. In the fixed versions, LibreLogo cannot be called from a document event handler. This     issue affects: Document Foundation LibreOffice versions prior to 6.2.5. (CVE-2019-9848)

  - LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various     script events such as mouse-over, document-open etc. Access is intended to be restricted to scripts under     the share/Scripts/python, user/Scripts/python sub-directories of the LibreOffice install. Protection was     added, to address CVE-2018-16858, to avoid a directory traversal attack where scripts in arbitrary     locations on the file system could be executed. However this new protection could be bypassed by a URL     encoding attack. In the fixed versions, the parsed url describing the script location is correctly encoded     before further processing. This issue affects: Document Foundation LibreOffice versions prior to 6.2.6.
    (CVE-2019-9852)

  - LibreOffice documents can contain macros. The execution of those macros is controlled by the document     security settings, typically execution of macros are blocked by default. A URL decoding flaw existed in     how the urls to the macros within the document were processed and categorized, resulting in the     possibility to construct a document where macro execution bypassed the security settings. The documents     were correctly detected as containing macros, and prompted the user to their existence within the     documents, but macros within the document were subsequently not controlled by the security settings     allowing arbitrary macro execution This issue affects: LibreOffice 6.2 series versions prior to 6.2.7;
    LibreOffice 6.3 series versions prior to 6.3.1. (CVE-2019-9853)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1598 advisory.

  - LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to     retrieve remote resources. This mode is not the default mode, but can be enabled by users who want to     disable LibreOffice's ability to include remote resources within a document. A flaw existed where bullet     graphics were omitted from this protection prior to version 6.2.5. This issue affects: Document Foundation     LibreOffice versions prior to 6.2.5. (CVE-2019-9849)

  - LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can     execute arbitrary python commands contained with the document it is launched from. LibreOffice also has a     feature where documents can specify that pre-installed scripts can be executed on various document script     events such as mouse-over, etc. Protection was added, to address CVE-2019-9848, to block calling LibreLogo     from script event handers. However an insufficient url validation vulnerability in LibreOffice allowed     malicious to bypass that protection and again trigger calling LibreLogo from script event handlers. This     issue affects: Document Foundation LibreOffice versions prior to 6.2.6. (CVE-2019-9850)

  - LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can     execute arbitrary python commands contained with the document it is launched from. Protection was added,     to address CVE-2019-9848, to block calling LibreLogo from document event script handers, e.g. mouse over.
    However LibreOffice also has a separate feature where documents can specify that pre-installed scripts can     be executed on various global script events such as document-open, etc. In the fixed versions, global     script event handlers are validated equivalently to document script event handlers. This issue affects:
    Document Foundation LibreOffice versions prior to 6.2.6. (CVE-2019-9851)

  - LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various     script events such as mouse-over, document-open etc. Access is intended to be restricted to scripts under     the share/Scripts/python, user/Scripts/python sub-directories of the LibreOffice install. Protection was     added, to address CVE-2019-9852, to avoid a directory traversal attack where scripts in arbitrary     locations on the file system could be executed by employing a URL encoding attack to defeat the path     verification step. However this protection could be bypassed by taking advantage of a flaw in how     LibreOffice assembled the final script URL location directly from components of the passed in path as     opposed to solely from the sanitized output of the path verification step. This issue affects: Document     Foundation LibreOffice 6.2 versions prior to 6.2.7; 6.3 versions prior to 6.3.1. (CVE-2019-9854)

  - LibreOffice has a feature where documents can specify that pre-installed macros can be executed on various     script events such as mouse-over, document-open etc. Access is intended to be restricted to scripts under     the share/Scripts/python, user/Scripts/python sub-directories of the LibreOffice install. Protection was     added, to address CVE-2018-16858, to avoid a directory traversal attack where scripts in arbitrary     locations on the file system could be executed. However this new protection could be bypassed by a URL     encoding attack. In the fixed versions, the parsed url describing the script location is correctly encoded     before further processing. This issue affects: Document Foundation LibreOffice versions prior to 6.2.6.
    (CVE-2019-9852)

  - LibreOffice documents can contain macros. The execution of those macros is controlled by the document     security settings, typically execution of macros are blocked by default. A URL decoding flaw existed in     how the urls to the macros within the document were processed and categorized, resulting in the     possibility to construct a document where macro execution bypassed the security settings. The documents     were correctly detected as containing macros, and prompted the user to their existence within the     documents, but macros within the document were subsequently not controlled by the security settings     allowing arbitrary macro execution This issue affects: LibreOffice 6.2 series versions prior to 6.2.7;
    LibreOffice 6.3 series versions prior to 6.3.1. (CVE-2019-9853)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:1598 advisory.

  - libreoffice: Remote resources protection module not applied to bullet graphics (CVE-2019-9849)

  - libreoffice: Insufficient URL validation allowing LibreLogo script execution (CVE-2019-9850)

  - libreoffice: LibreLogo global-event script execution (CVE-2019-9851)

  - libreoffice: Insufficient URL encoding flaw in allowed script location check (CVE-2019-9852)

  - libreoffice: Insufficient URL decoding flaw in categorizing macro location (CVE-2019-9853)

  - libreoffice: Unsafe URL assembly flaw in allowed script location check (CVE-2019-9854)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1598 advisory.

  - libreoffice: Remote resources protection module not applied to bullet graphics (CVE-2019-9849)

  - libreoffice: Insufficient URL validation allowing LibreLogo script execution (CVE-2019-9850)

  - libreoffice: LibreLogo global-event script execution (CVE-2019-9851)

  - libreoffice: Insufficient URL encoding flaw in allowed script location check (CVE-2019-9852)

  - libreoffice: Insufficient URL decoding flaw in categorizing macro location (CVE-2019-9853)

  - libreoffice: Unsafe URL assembly flaw in allowed script location check (CVE-2019-9854)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

* libreoffice: LibreLogo script can be manipulated into executing arbitrary python commands * libreoffice: Insufficient URL validation allowing LibreLogo script execution * libreoffice: LibreLogo global-event script execution * libreoffice: Insufficient URL encoding flaw in allowed script location check * libreoffice: Insufficient URL decoding flaw in categorizing macro location * libreoffice: Unsafe URL assembly flaw in allowed script location check * libreoffice: Remote resources protection module not applied to bullet graphics

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1151 advisory.

  - libreoffice: LibreLogo script can be manipulated into     executing arbitrary python commands (CVE-2019-9848)

  - libreoffice: Remote resources protection module not     applied to bullet graphics (CVE-2019-9849)

  - libreoffice: Insufficient URL validation allowing     LibreLogo script execution (CVE-2019-9850)

  - libreoffice: LibreLogo global-event script execution     (CVE-2019-9851)

  - libreoffice: Insufficient URL encoding flaw in allowed     script location check (CVE-2019-9852)

  - libreoffice: Insufficient URL decoding flaw in     categorizing macro location (CVE-2019-9853)

  - libreoffice: Unsafe URL assembly flaw in allowed script     location check (CVE-2019-9854)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1151 advisory.

  - libreoffice: LibreLogo script can be manipulated into executing arbitrary python commands (CVE-2019-9848)

  - libreoffice: Remote resources protection module not applied to bullet graphics (CVE-2019-9849)

  - libreoffice: Insufficient URL validation allowing LibreLogo script execution (CVE-2019-9850)

  - libreoffice: LibreLogo global-event script execution (CVE-2019-9851)

  - libreoffice: Insufficient URL encoding flaw in allowed script location check (CVE-2019-9852)

  - libreoffice: Insufficient URL decoding flaw in categorizing macro location (CVE-2019-9853)

  - libreoffice: Unsafe URL assembly flaw in allowed script location check (CVE-2019-9854)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

According to the version of the libreoffice packages installed, the EulerOS installation on the remote host is affected by the following vulnerability :

  - LibreOffice has a feature where documents can specify     that pre-installed macros can be executed on various     script events such as mouse-over, document-open etc.
    Access is intended to be restricted to scripts under     the share/Scripts/python, user/Scripts/python     sub-directories of the LibreOffice install. Protection     was added, to address CVE-2019-9852, to avoid a     directory traversal attack where scripts in arbitrary     locations on the file system could be executed by     employing a URL encoding attack to defeat the path     verification step. However this protection could be     bypassed by taking advantage of a flaw in how     LibreOffice assembled the final script URL location     directly from components of the passed in path as     opposed to solely from the sanitized output of the path     verification step. This issue affects: Document     Foundation LibreOffice 6.2 versions prior to 6.2.7 6.3     versions prior to 6.3.1.(CVE-2019-9854)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for libreoffice fixes the following issues: &#9; Updated to version 6.2.7.1.

Security issues fixed :

  - CVE-2019-9854: Fixed unsafe URL assembly flaw     (bsc#1149944).

  - CVE-2019-9855: Fixed path equivalence handling flaw     (bsc#1149943)

This update was imported from the SUSE:SLE-15:Update update project.

Several vulnerabilities were discovered in LibreOffice, the office productivity suite.

CVE-2019-9848

Nils Emmerich discovered that malicious documents could execute arbitrary Python code via LibreLogo.

CVE-2019-9849

Matei Badanoiu discovered that the stealth mode did not apply to bullet graphics.

CVE-2019-9850

It was discovered that the protections implemented in CVE-2019-9848 could be bypassed because of insufficient URL validation.

CVE-2019-9851

Gabriel Masei discovered that malicious documents could execute arbitrary pre-installed scripts.

CVE-2019-9852

Nils Emmerich discovered that the protection implemented to address CVE-2018-16858 could be bypassed by a URL encoding attack.

CVE-2019-9853

Nils Emmerich discovered that malicious documents could bypass document security settings to execute macros contained within the document.

CVE-2019-9854

It was discovered that the protection implemented to address CVE-2019-9852 could be bypassed because of insufficient input sanitization.

For Debian 8 'Jessie', these problems have been fixed in version 1:4.3.3-2+deb8u13.

We recommend that you upgrade your libreoffice packages.

NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

The version of LibreOffice installed on the remote Windows host is prior to 6.2.7 or 6.3.x prior to 6.3.1. It is, therefore, affected by the following vulnerabilities:

  - A directory traversal vulnerability resulting from a feature in LibreOffice which allows documents to     specify pre-installed macros that can be executed on various script events. Only scripts under the     'share/Scripts/python' and /user/Scripts/python' sub-directories of the LibreOffice install should be     accessible. Previous protection to address CVE-2019-9852 to avoid a similar attack was added, however this     protection can be bypassed due to a flaw in how LibreOffice assembles the final script URL location. This     flaw can be exploited to allow scripts in arbitrary locations on the file system to be executed.     (CVE-2019-9854)

  - An arbitrary script execution vulnerability caused by a flaw allowing event-based execution of Python     scripts within a document. Previous protection was added to address this flaw, however due to a Windows     8.3 path equivalence flaw, Windows systems are still vulnerable via Windows filename pseudonyms. Note,     LibreLogo must be installed for this vulnerability to be exploitable, however LibreLogo is frequently     bundled with LibreOffice. (CVE-2019-9855)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of LibreOffice installed on the remote macOS host is prior to 6.2.7 or 6.3.x prior to 6.3.1. It is, therefore, affected by a directory traversal vulnerability. This is due to a feature in LibreOffice which allows documents to specify pre-installed macros that can be executed on various script events. Only scripts under the 'share/Scripts/python' and /user/Scripts/python' sub-directories of the LibreOffice install should be accessible.
Previous protection to address CVE-2019-9852 to avoid a directory traversal attack was added, however this protection can be bypassed due to a flaw in how LibreOffice assembles the final script URL location. This flaw can be exploited to allow scripts in arbitrary locations on the file system to be executed.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

It was discovered that LibreOffice incorrectly handled embedded scripts in document files. If a user were tricked into opening a specially crafted document, a remote attacker could possibly execute arbitrary code.

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for libreoffice fixes the following issues :

Updated to version 6.2.7.1.

Security issues fixed :

  - CVE-2019-9849: Disabled fetching remote bullet graphics     in 'stealth mode' (bsc#1141861).

  - CVE-2019-9848: Fixed an arbitrary script execution via     LibreLogo (bsc#1141862).

  - CVE-2019-9851: Fixed LibreLogo global-event script     execution issue (bsc#1146105).

  - CVE-2019-9852: Fixed insufficient URL encoding flaw in     allowed script location check (bsc#1146107).

  - CVE-2019-9850: Fixed insufficient URL validation that     allowed LibreLogo script execution (bsc#1146098).

  - CVE-2019-9854: Fixed unsafe URL assembly flaw     (bsc#1149944).

  - CVE-2019-9855: Fixed path equivalence handling flaw     (bsc#1149943)

Non-security issue fixed :

  - SmartArt: Basic rendering of Trapezoid List     (bsc#1133534).

This update was imported from the SUSE:SLE-15-SP1:Update update project.

This update for libreoffice fixes the following issues :

Updated to version 6.2.7.1.

Security issues fixed :

CVE-2019-9849: Disabled fetching remote bullet graphics in 'stealth mode' (bsc#1141861).

CVE-2019-9848: Fixed an arbitrary script execution via LibreLogo (bsc#1141862).

CVE-2019-9851: Fixed LibreLogo global-event script execution issue (bsc#1146105).

CVE-2019-9852: Fixed insufficient URL encoding flaw in allowed script location check (bsc#1146107).

CVE-2019-9850: Fixed insufficient URL validation that allowed LibreLogo script execution (bsc#1146098).

CVE-2019-9854: Fixed unsafe URL assembly flaw (bsc#1149944).

CVE-2019-9855: Fixed path equivalence handling flaw (bsc#1149943)

Non-security issue fixed: SmartArt: Basic rendering of Trapezoid List (bsc#1133534).

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for libreoffice to version 6.2.7.1 fixes the following issues :

Security issues fixed :

CVE-2019-9849: Disabled fetching remote bullet graphics in 'stealth mode' (bsc#1141861).

CVE-2019-9848: Fixed an arbitrary script execution via LibreLogo (bsc#1141862).

CVE-2019-9851: Fixed LibreLogo global-event script execution issue (bsc#1146105).

CVE-2019-9852: Fixed insufficient URL encoding flaw in allowed script location check (bsc#1146107).

CVE-2019-9850: Fixed insufficient URL validation that allowed LibreLogo script execution (bsc#1146098).

CVE-2019-9854: Fixed unsafe URL assembly flaw (bsc#1149944).

CVE-2019-9855: Fixed path equivalence handling flaw (bsc#1149943)

Non-security issue fixed: SmartArt: Basic rendering of Trapezoid List (bsc#1133534)

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

- CVE-2019-9854 Unsafe URL assembly flaw in allowed script     location check

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

It was discovered that the code fixes for LibreOffice to address CVE-2019-9852 were not complete. Additional information can be found at.

ID	Name	Product	Family	Severity
182035	Amazon Linux 2 : libreoffice (ALASLIBREOFFICE-2023-002)	Nessus	Amazon Linux Local Security Checks	critical
180730	Oracle Linux 7 : libreoffice (ELSA-2020-1151)	Nessus	Oracle Linux Local Security Checks	critical
180688	Oracle Linux 8 : libreoffice (ELSA-2020-1598)	Nessus	Oracle Linux Local Security Checks	critical
146000	CentOS 8 : libreoffice (CESA-2020:1598)	Nessus	CentOS Local Security Checks	critical
143042	RHEL 8 : libreoffice (RHSA-2020:1598)	Nessus	Red Hat Local Security Checks	critical
135817	Scientific Linux Security Update : libreoffice on SL7.x x86_64 (20200407)	Nessus	Scientific Linux Local Security Checks	critical
135347	CentOS 7 : libreoffice (CESA-2020:1151)	Nessus	CentOS Local Security Checks	critical
135068	RHEL 7 : libreoffice (RHSA-2020:1151)	Nessus	Red Hat Local Security Checks	critical
130878	EulerOS 2.0 SP5 : libreoffice (EulerOS-SA-2019-2169)	Nessus	Huawei Local Security Checks	high
130143	openSUSE Security Update : libreoffice (openSUSE-2019-2361)	Nessus	SuSE Local Security Checks	critical
129595	Debian DLA-1947-1 : libreoffice security update	Nessus	Debian Local Security Checks	critical
129535	LibreOffice < 6.2.7 / 6.3.x < 6.3.1 Multiple Vulnerabilities (Windows)	Nessus	Windows	critical
129534	LibreOffice < 6.2.7 / 6.3.x < 6.3.1 Directory Traversal (macOS)	Nessus	MacOS X Local Security Checks	high
129351	Ubuntu 16.04 LTS / 18.04 LTS : LibreOffice vulnerability (USN-4138-1)	Nessus	Ubuntu Local Security Checks	high
129346	openSUSE Security Update : libreoffice (openSUSE-2019-2183)	Nessus	SuSE Local Security Checks	critical
129046	SUSE SLED15 / SLES15 Security Update : libreoffice (SUSE-SU-2019:2402-1)	Nessus	SuSE Local Security Checks	critical
129045	SUSE SLED12 Security Update : libreoffice (SUSE-SU-2019:2401-1)	Nessus	SuSE Local Security Checks	critical
128790	Fedora 29 : 1:libreoffice (2019-9627e1402e)	Nessus	Fedora Local Security Checks	high
128620	Debian DSA-4519-1 : libreoffice - security update	Nessus	Debian Local Security Checks	high

Detections

Analytics

CVE-2019-9854

high

Tenable Plugins

critical

critical

critical

critical

critical

critical

critical

critical

high

critical

critical

critical

high

high

critical

critical

critical

high

high