Detections
Analytics

openSUSE Security Update : calligra (openSUSE-SU-2012:1061-1)

high Nessus Plugin ID 74724

Language:

Synopsis

The remote openSUSE host is missing a security update.

Description

Fix buffer overflow in MS Word ODF filter among other non-security related bugs.

Also a version update to 2.4.3 happened :

 - Words :

 - Always show vertical scroll bar to avoid race condition (kde#301076)

 - Do not save with an attribue that makes LibreOffice and OpenOffice crash (kde#298689 )

 - Kexi :

 - Fixed import from csv when “Start at Line”
 value changed (kde#302209)

 - Set limit to 255 characters for Text type (VARCHAR) (kde#301277 and 301136)

 + - Remove limits for Text data type, leave as option (kde#301277)

 - Fixed data saving when focus policy for one of widgets is NoFocus (kde#301109)

 - Krita :

 - Read and set the resolution for psd images

 - Charts :

 - Fix load/save styles of all shapes (title,subtitle,axistitles,footer,etc.)

 - Lines in the chart should be displayed (kde#271771)

 - Combined Bar and Line Charts only show bars (Trendlines not supported) (kde#288537)

 - Load/save chart type for each dataset (kde#271771 and 288537)

Solution

Update the affected calligra packages.

See Also

https://bugzilla.novell.com/show_bug.cgi?id=774534

https://lists.opensuse.org/opensuse-updates/2012-08/msg00041.html

Plugin Details

Severity: High

ID: 74724

File Name: openSUSE-2012-533.nasl

Version: 1.4

Type: local

Agent: unix

Published: 6/13/2014

Updated: 1/19/2021

Supported Sensors: Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:calligra, p-cpe:/a:novell:opensuse:calligra-braindump, p-cpe:/a:novell:opensuse:calligra-braindump-debuginfo, p-cpe:/a:novell:opensuse:calligra-debuginfo, p-cpe:/a:novell:opensuse:calligra-debugsource, p-cpe:/a:novell:opensuse:calligra-devel, p-cpe:/a:novell:opensuse:calligra-flow, p-cpe:/a:novell:opensuse:calligra-flow-debuginfo, p-cpe:/a:novell:opensuse:calligra-karbon, p-cpe:/a:novell:opensuse:calligra-karbon-debuginfo, p-cpe:/a:novell:opensuse:calligra-kexi, p-cpe:/a:novell:opensuse:calligra-kexi-debuginfo, p-cpe:/a:novell:opensuse:calligra-kexi-mssql-driver, p-cpe:/a:novell:opensuse:calligra-kexi-mssql-driver-debuginfo, p-cpe:/a:novell:opensuse:calligra-kexi-mysql-driver, p-cpe:/a:novell:opensuse:calligra-kexi-mysql-driver-debuginfo, p-cpe:/a:novell:opensuse:calligra-kexi-postgresql-driver, p-cpe:/a:novell:opensuse:calligra-kexi-postgresql-driver-debuginfo, p-cpe:/a:novell:opensuse:calligra-kexi-spreadsheet-import, p-cpe:/a:novell:opensuse:calligra-kexi-spreadsheet-import-debuginfo, p-cpe:/a:novell:opensuse:calligra-kexi-xbase-driver, p-cpe:/a:novell:opensuse:calligra-kexi-xbase-driver-debuginfo, p-cpe:/a:novell:opensuse:calligra-krita, p-cpe:/a:novell:opensuse:calligra-krita-debuginfo, p-cpe:/a:novell:opensuse:calligra-kthesaurus, p-cpe:/a:novell:opensuse:calligra-kthesaurus-debuginfo, p-cpe:/a:novell:opensuse:calligra-plan, p-cpe:/a:novell:opensuse:calligra-plan-debuginfo, p-cpe:/a:novell:opensuse:calligra-sheets, p-cpe:/a:novell:opensuse:calligra-sheets-debuginfo, p-cpe:/a:novell:opensuse:calligra-stage, p-cpe:/a:novell:opensuse:calligra-stage-debuginfo, p-cpe:/a:novell:opensuse:calligra-tools, p-cpe:/a:novell:opensuse:calligra-tools-debuginfo, p-cpe:/a:novell:opensuse:calligra-words, p-cpe:/a:novell:opensuse:calligra-words-debuginfo, cpe:/o:novell:opensuse:12.2

Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list, Host/cpu

Patch Publication Date: 8/19/2012

Reference Information

CVE: CVE-2012-3456