openSUSE Security Update : calligra (openSUSE-SU-2012:1061-1)

High Nessus Plugin ID 74724

Synopsis

The remote openSUSE host is missing a security update.

Description

Fix buffer overflow in MS Word ODF filter among other non-security related bugs.

Also a version update to 2.4.3 happened :

- Words :

- Always show vertical scroll bar to avoid race condition (kde#301076)

- Do not save with an attribue that makes LibreOffice and OpenOffice crash (kde#298689 )

- Kexi :

- Fixed import from csv when “Start at Line”
value changed (kde#302209)

- Set limit to 255 characters for Text type (VARCHAR) (kde#301277 and 301136)

+ - Remove limits for Text data type, leave as option (kde#301277)

- Fixed data saving when focus policy for one of widgets is NoFocus (kde#301109)

- Krita :

- Read and set the resolution for psd images

- Charts :

- Fix load/save styles of all shapes (title,subtitle,axistitles,footer,etc.)

- Lines in the chart should be displayed (kde#271771)

- Combined Bar and Line Charts only show bars (Trendlines not supported) (kde#288537)

- Load/save chart type for each dataset (kde#271771 and 288537)

Solution

Update the affected calligra packages.

See Also

https://bugzilla.novell.com/show_bug.cgi?id=774534

https://lists.opensuse.org/opensuse-updates/2012-08/msg00041.html

Plugin Details

Severity: High

ID: 74724

File Name: openSUSE-2012-533.nasl

Version: 1.3

Type: local

Agent: unix

Published: 2014/06/13

Updated: 2020/06/04

Dependencies: 12634

Risk Information

Risk Factor: High

CVSS v2.0

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:calligra, p-cpe:/a:novell:opensuse:calligra-braindump, p-cpe:/a:novell:opensuse:calligra-braindump-debuginfo, p-cpe:/a:novell:opensuse:calligra-debuginfo, p-cpe:/a:novell:opensuse:calligra-debugsource, p-cpe:/a:novell:opensuse:calligra-devel, p-cpe:/a:novell:opensuse:calligra-flow, p-cpe:/a:novell:opensuse:calligra-flow-debuginfo, p-cpe:/a:novell:opensuse:calligra-karbon, p-cpe:/a:novell:opensuse:calligra-karbon-debuginfo, p-cpe:/a:novell:opensuse:calligra-kexi, p-cpe:/a:novell:opensuse:calligra-kexi-debuginfo, p-cpe:/a:novell:opensuse:calligra-kexi-mssql-driver, p-cpe:/a:novell:opensuse:calligra-kexi-mssql-driver-debuginfo, p-cpe:/a:novell:opensuse:calligra-kexi-mysql-driver, p-cpe:/a:novell:opensuse:calligra-kexi-mysql-driver-debuginfo, p-cpe:/a:novell:opensuse:calligra-kexi-postgresql-driver, p-cpe:/a:novell:opensuse:calligra-kexi-postgresql-driver-debuginfo, p-cpe:/a:novell:opensuse:calligra-kexi-spreadsheet-import, p-cpe:/a:novell:opensuse:calligra-kexi-spreadsheet-import-debuginfo, p-cpe:/a:novell:opensuse:calligra-kexi-xbase-driver, p-cpe:/a:novell:opensuse:calligra-kexi-xbase-driver-debuginfo, p-cpe:/a:novell:opensuse:calligra-krita, p-cpe:/a:novell:opensuse:calligra-krita-debuginfo, p-cpe:/a:novell:opensuse:calligra-kthesaurus, p-cpe:/a:novell:opensuse:calligra-kthesaurus-debuginfo, p-cpe:/a:novell:opensuse:calligra-plan, p-cpe:/a:novell:opensuse:calligra-plan-debuginfo, p-cpe:/a:novell:opensuse:calligra-sheets, p-cpe:/a:novell:opensuse:calligra-sheets-debuginfo, p-cpe:/a:novell:opensuse:calligra-stage, p-cpe:/a:novell:opensuse:calligra-stage-debuginfo, p-cpe:/a:novell:opensuse:calligra-tools, p-cpe:/a:novell:opensuse:calligra-tools-debuginfo, p-cpe:/a:novell:opensuse:calligra-words, p-cpe:/a:novell:opensuse:calligra-words-debuginfo, cpe:/o:novell:opensuse:12.2

Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list, Host/cpu

Patch Publication Date: 2012/08/19

Reference Information

CVE: CVE-2012-3456