Vulnerabilities > CVE-2015-1774 - Out-of-bounds Write vulnerability in multiple products
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
The HWP filter in LibreOffice before 4.3.7 and 4.4.x before 4.4.2 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP document, which triggers an out-of-bounds write.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Nessus
NASL family FreeBSD Local Security Checks NASL id FREEBSD_PKG_B13AF778F4FC11E4A95DAC9E174BE3AF.NASL description US-CERT/NIST reports : The HWP filter in LibreOffice before 4.3.7 and 4.4.x before 4.4.2 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP document, which triggers an out-of-bounds write. last seen 2020-06-01 modified 2020-06-02 plugin id 83281 published 2015-05-08 reporter This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/83281 title FreeBSD : Vulnerability in HWP document filter (b13af778-f4fc-11e4-a95d-ac9e174be3af) code # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from the FreeBSD VuXML database : # # Copyright 2003-2018 Jacques Vidrine and contributors # # Redistribution and use in source (VuXML) and 'compiled' forms (SGML, # HTML, PDF, PostScript, RTF and so forth) with or without modification, # are permitted provided that the following conditions are met: # 1. Redistributions of source code (VuXML) must retain the above # copyright notice, this list of conditions and the following # disclaimer as the first lines of this file unmodified. # 2. Redistributions in compiled form (transformed to other DTDs, # published online in any format, converted to PDF, PostScript, # RTF and other formats) must reproduce the above copyright # notice, this list of conditions and the following disclaimer # in the documentation and/or other materials provided with the # distribution. # # THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS "AS IS" # AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, # THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR # PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS # BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, # OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT # OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR # BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, # WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE # OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION, # EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. # include("compat.inc"); if (description) { script_id(83281); script_version("2.4"); script_cvs_date("Date: 2018/11/10 11:49:44"); script_cve_id("CVE-2015-1774"); script_name(english:"FreeBSD : Vulnerability in HWP document filter (b13af778-f4fc-11e4-a95d-ac9e174be3af)"); script_summary(english:"Checks for updated packages in pkg_info output"); script_set_attribute( attribute:"synopsis", value: "The remote FreeBSD host is missing one or more security-related updates." ); script_set_attribute( attribute:"description", value: "US-CERT/NIST reports : The HWP filter in LibreOffice before 4.3.7 and 4.4.x before 4.4.2 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP document, which triggers an out-of-bounds write." ); script_set_attribute( attribute:"see_also", value:"http://www.openoffice.org/security/cves/CVE-2015-1774.html" ); # https://www.libreoffice.org/about-us/security/advisories/cve-2015-1774/ script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?4d14a6d6" ); # https://vuxml.freebsd.org/freebsd/b13af778-f4fc-11e4-a95d-ac9e174be3af.html script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?485e1082" ); script_set_attribute(attribute:"solution", value:"Update the affected packages."); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:freebsd:freebsd:apache-openoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:freebsd:freebsd:apache-openoffice-devel"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:freebsd:freebsd:libreoffice"); script_set_attribute(attribute:"cpe", value:"cpe:/o:freebsd:freebsd"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/04/27"); script_set_attribute(attribute:"patch_publication_date", value:"2015/05/07"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/05/08"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"FreeBSD Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/FreeBSD/release", "Host/FreeBSD/pkg_info"); exit(0); } include("audit.inc"); include("freebsd_package.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (!get_kb_item("Host/FreeBSD/release")) audit(AUDIT_OS_NOT, "FreeBSD"); if (!get_kb_item("Host/FreeBSD/pkg_info")) audit(AUDIT_PACKAGE_LIST_MISSING); flag = 0; if (pkg_test(save_report:TRUE, pkg:"libreoffice<4.3.7")) flag++; if (pkg_test(save_report:TRUE, pkg:"apache-openoffice<4.1.1_9")) flag++; if (pkg_test(save_report:TRUE, pkg:"apache-openoffice-devel<4.2.1677190,3")) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get()); else security_warning(0); exit(0); } else audit(AUDIT_HOST_NOT, "affected");NASL family Gentoo Local Security Checks NASL id GENTOO_GLSA-201603-05.NASL description The remote host is affected by the vulnerability described in GLSA-201603-05 (LibreOffice, OpenOffice: Multiple vulnerabilities) Multiple vulnerabilities were found in both LibreOffice and OpenOffice that allow the remote execution of arbitrary code and potential Denial of Service. These vulnerabilities may be exploited through multiple vectors including crafted documents, link handling, printer setup in ODF document types, DOC file formats, and Calc spreadsheets. Please review the referenced CVE’s for specific information regarding each. Impact : A remote attacker could entice a user to open a specially crafted file using the LibreOffice or OpenOffice suite of software. Execution of these attacks could possibly result in the execution of arbitrary code with the privileges of the process or a Denial of Service condition. Workaround : There is no known work around at this time. last seen 2020-06-01 modified 2020-06-02 plugin id 89811 published 2016-03-10 reporter This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/89811 title GLSA-201603-05 : LibreOffice, OpenOffice: Multiple vulnerabilities code # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Gentoo Linux Security Advisory GLSA 201603-05. # # The advisory text is Copyright (C) 2001-2019 Gentoo Foundation, Inc. # and licensed under the Creative Commons - Attribution / Share Alike # license. See http://creativecommons.org/licenses/by-sa/3.0/ # include("compat.inc"); if (description) { script_id(89811); script_version("2.2"); script_cvs_date("Date: 2019/08/12 17:35:38"); script_cve_id("CVE-2014-3524", "CVE-2014-3575", "CVE-2014-3693", "CVE-2014-9093", "CVE-2015-1774", "CVE-2015-4551", "CVE-2015-5212", "CVE-2015-5213", "CVE-2015-5214"); script_xref(name:"GLSA", value:"201603-05"); script_name(english:"GLSA-201603-05 : LibreOffice, OpenOffice: Multiple vulnerabilities"); script_summary(english:"Checks for updated package(s) in /var/db/pkg"); script_set_attribute( attribute:"synopsis", value: "The remote Gentoo host is missing one or more security-related patches." ); script_set_attribute( attribute:"description", value: "The remote host is affected by the vulnerability described in GLSA-201603-05 (LibreOffice, OpenOffice: Multiple vulnerabilities) Multiple vulnerabilities were found in both LibreOffice and OpenOffice that allow the remote execution of arbitrary code and potential Denial of Service. These vulnerabilities may be exploited through multiple vectors including crafted documents, link handling, printer setup in ODF document types, DOC file formats, and Calc spreadsheets. Please review the referenced CVE’s for specific information regarding each. Impact : A remote attacker could entice a user to open a specially crafted file using the LibreOffice or OpenOffice suite of software. Execution of these attacks could possibly result in the execution of arbitrary code with the privileges of the process or a Denial of Service condition. Workaround : There is no known work around at this time." ); script_set_attribute( attribute:"see_also", value:"https://security.gentoo.org/glsa/201603-05" ); script_set_attribute( attribute:"solution", value: "All LibreOffice users should upgrade their respective packages to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-office/libreoffice-4.4.2' # emerge --ask --oneshot --verbose '>=app-office/libreoffice-bin-4.4.2'# emerge --ask --oneshot --verbose '>=app-office/libreoffice-bin-debug-4.4.2' All OpenOffice users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-office/openoffice-bin-4.1.2'" ); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:libreoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:libreoffice-bin"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:libreoffice-bin-debug"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:openoffice-bin"); script_set_attribute(attribute:"cpe", value:"cpe:/o:gentoo:linux"); script_set_attribute(attribute:"vuln_publication_date", value:"2014/08/26"); script_set_attribute(attribute:"patch_publication_date", value:"2016/03/09"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/03/10"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Gentoo Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Gentoo/release", "Host/Gentoo/qpkg-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("qpkg.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (!get_kb_item("Host/Gentoo/release")) audit(AUDIT_OS_NOT, "Gentoo"); if (!get_kb_item("Host/Gentoo/qpkg-list")) audit(AUDIT_PACKAGE_LIST_MISSING); flag = 0; if (qpkg_check(package:"app-office/libreoffice", unaffected:make_list("ge 4.4.2"), vulnerable:make_list("lt 4.4.2"))) flag++; if (qpkg_check(package:"app-office/libreoffice-bin", unaffected:make_list("ge 4.4.2"), vulnerable:make_list("lt 4.4.2"))) flag++; if (qpkg_check(package:"app-office/libreoffice-bin-debug", unaffected:make_list("ge 4.4.2"), vulnerable:make_list("lt 4.4.2"))) flag++; if (qpkg_check(package:"app-office/openoffice-bin", unaffected:make_list("ge 4.1.2"), vulnerable:make_list("lt 4.1.2"))) flag++; if (flag) { if (report_verbosity > 0) security_hole(port:0, extra:qpkg_report_get()); else security_hole(0); exit(0); } else { tested = qpkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "LibreOffice / OpenOffice"); }NASL family Red Hat Local Security Checks NASL id REDHAT-RHSA-2015-1458.NASL description Updated libreoffice packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. A flaw was found in the way the LibreOffice HWP (Hangul Word Processor) file filter processed certain HWP documents. An attacker able to trick a user into opening a specially crafted HWP document could possibly use this flaw to execute arbitrary code with the privileges of the user opening that document. (CVE-2015-1774) The libreoffice packages have been upgraded to upstream version 4.2.8.2, which provides a number of bug fixes and enhancements over the previous version, including : * OpenXML interoperability has been improved. * This update adds additional statistics functions to the Calc application, thus improving interoperability with Microsoft Excel and its last seen 2020-06-01 modified 2020-06-02 plugin id 84950 published 2015-07-23 reporter This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/84950 title RHEL 6 : libreoffice (RHSA-2015:1458) code # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Red Hat Security Advisory RHSA-2015:1458. The text # itself is copyright (C) Red Hat, Inc. # include("compat.inc"); if (description) { script_id(84950); script_version("2.8"); script_cvs_date("Date: 2019/10/24 15:35:40"); script_cve_id("CVE-2015-1774"); script_bugtraq_id(74338); script_xref(name:"RHSA", value:"2015:1458"); script_name(english:"RHEL 6 : libreoffice (RHSA-2015:1458)"); script_summary(english:"Checks the rpm output for the updated packages"); script_set_attribute( attribute:"synopsis", value:"The remote Red Hat host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "Updated libreoffice packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. A flaw was found in the way the LibreOffice HWP (Hangul Word Processor) file filter processed certain HWP documents. An attacker able to trick a user into opening a specially crafted HWP document could possibly use this flaw to execute arbitrary code with the privileges of the user opening that document. (CVE-2015-1774) The libreoffice packages have been upgraded to upstream version 4.2.8.2, which provides a number of bug fixes and enhancements over the previous version, including : * OpenXML interoperability has been improved. * This update adds additional statistics functions to the Calc application, thus improving interoperability with Microsoft Excel and its 'Analysis ToolPak' add-in. * Various performance improvements have been implemented in Calc. * This update adds new import filters for importing files from the Appple Keynote and Abiword applications. * The export filter for the MathML markup language has been improved. * This update adds a new start screen that includes thumbnails of recently opened documents. * A visual clue is now displayed in the Slide Sorter window for slides with transitions or animations. * This update improves trend lines in charts. * LibreOffice now supports BCP 47 language tags. For a complete list of bug fixes and enhancements provided by this rebase, see the libreoffice change log linked from the References section. (BZ#1150048) Users of libreoffice are advised to upgrade to these updated packages, which correct these issues and add these enhancements." ); script_set_attribute( attribute:"see_also", value:"https://wiki.documentfoundation.org/ReleaseNotes/4.2" ); script_set_attribute( attribute:"see_also", value:"https://access.redhat.com/errata/RHSA-2015:1458" ); script_set_attribute( attribute:"see_also", value:"https://access.redhat.com/security/cve/cve-2015-1774" ); script_set_attribute(attribute:"solution", value:"Update the affected packages."); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-fa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-is"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-lb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-mn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-pt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-vi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-zh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-base"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-bsh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-calc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-core"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-draw"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-emailmerge"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-filters"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-gdb-debug-support"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-glade"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-graphicfilter"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-headless"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-impress"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ar"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-as"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-bn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-cy"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-dz"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-el"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-et"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-eu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-gl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-gu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-he"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-hi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-kn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-mai"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ml"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-mr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ms"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-nb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-nn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-nr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-nso"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-or"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-pa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-pt-BR"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-pt-PT"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ss"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-st"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ta"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-te"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-th"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-tn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-uk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ur"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ve"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-xh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-zh-Hans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-zh-Hant"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-zu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-librelogo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-math"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-nlpsolver"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-ogltrans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-opensymbol-fonts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-pdfimport"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-pyuno"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-rhino"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-sdk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-sdk-doc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-ure"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-wiki-publisher"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-writer"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-xsltfilter"); script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:6"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/04/28"); script_set_attribute(attribute:"patch_publication_date", value:"2015/07/22"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/07/23"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Red Hat Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("misc_func.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/RedHat/release"); if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat"); os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat"); os_ver = os_ver[1]; if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 6.x", "Red Hat " + os_ver); if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu); yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo"); if (!empty_or_null(yum_updateinfo)) { rhsa = "RHSA-2015:1458"; yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa); if (!empty_or_null(yum_report)) { security_report_v4( port : 0, severity : SECURITY_WARNING, extra : yum_report ); exit(0); } else { audit_message = "affected by Red Hat security advisory " + rhsa; audit(AUDIT_OS_NOT, audit_message); } } else { flag = 0; if (rpm_check(release:"RHEL6", reference:"autocorr-af-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-bg-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-ca-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-cs-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-da-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-de-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-en-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-es-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-fa-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-fi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-fr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-ga-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-hr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-hu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-is-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-it-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-ja-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-ko-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-lb-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-lt-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-mn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-nl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-pl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-pt-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-ro-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-ru-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-sk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-sl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-sr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-sv-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-tr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-vi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-zh-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-base-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-base-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-base-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-bsh-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-bsh-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-bsh-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-calc-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-calc-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-calc-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-core-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-core-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-core-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"libreoffice-debuginfo-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-draw-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-draw-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-draw-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-emailmerge-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-emailmerge-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-emailmerge-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-filters-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-filters-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-filters-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"libreoffice-gdb-debug-support-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-glade-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-glade-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-glade-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-graphicfilter-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-graphicfilter-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-graphicfilter-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-headless-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-headless-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-headless-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-impress-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-impress-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-impress-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-af-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-af-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-af-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ar-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ar-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ar-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-as-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-as-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-as-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-bg-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-bg-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-bg-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-bn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-bn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-bn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ca-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ca-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ca-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-cs-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-cs-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-cs-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-cy-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-cy-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-cy-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-da-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-da-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-da-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-de-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-de-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-de-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-dz-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-dz-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-dz-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-el-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-el-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-el-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-en-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-en-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-en-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-es-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-es-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-es-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-et-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-et-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-et-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-eu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-eu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-eu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-fi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-fi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-fi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-fr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-fr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-fr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ga-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ga-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ga-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-gl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-gl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-gl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-gu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-gu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-gu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-he-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-he-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-he-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-hi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-hi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-hi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-hr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-hr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-hr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-hu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-hu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-hu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-it-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-it-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-it-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ja-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ja-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ja-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-kn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-kn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-kn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ko-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ko-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ko-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-lt-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-lt-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-lt-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-mai-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-mai-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-mai-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ml-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ml-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ml-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-mr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-mr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-mr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ms-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ms-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ms-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-nb-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-nb-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-nb-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-nl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-nl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-nl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-nn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-nn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-nn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-nr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-nr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-nr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-nso-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-nso-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-nso-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-or-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-or-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-or-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-pa-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-pa-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-pa-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-pl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-pl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-pl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-pt-BR-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-pt-BR-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-pt-BR-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-pt-PT-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-pt-PT-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-pt-PT-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ro-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ro-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ro-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ru-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ru-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ru-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-sk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-sk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-sk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-sl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-sl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-sl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-sr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-sr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-sr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ss-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ss-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ss-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-st-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-st-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-st-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-sv-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-sv-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-sv-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ta-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ta-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ta-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-te-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-te-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-te-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-th-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-th-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-th-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-tn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-tn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-tn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-tr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-tr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-tr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ts-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ts-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ts-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-uk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-uk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-uk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ur-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ur-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ur-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ve-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ve-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ve-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-xh-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-xh-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-xh-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-zh-Hans-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-zh-Hans-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-zh-Hans-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-zh-Hant-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-zh-Hant-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-zh-Hant-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-zu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-zu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-zu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-librelogo-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-librelogo-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-librelogo-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-math-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-math-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-math-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-nlpsolver-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-nlpsolver-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-nlpsolver-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-ogltrans-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-ogltrans-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-ogltrans-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", reference:"libreoffice-opensymbol-fonts-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-pdfimport-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-pdfimport-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-pdfimport-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-pyuno-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-pyuno-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-pyuno-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-rhino-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-rhino-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-rhino-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-sdk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-sdk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-sdk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-sdk-doc-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-sdk-doc-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-sdk-doc-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-ure-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-ure-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-ure-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-wiki-publisher-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-wiki-publisher-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-wiki-publisher-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-writer-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-writer-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-writer-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-xsltfilter-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-xsltfilter-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-xsltfilter-4.2.8.2-11.el6")) flag++; if (flag) { security_report_v4( port : 0, severity : SECURITY_WARNING, extra : rpm_report_get() + redhat_report_package_caveat() ); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "autocorr-af / autocorr-bg / autocorr-ca / autocorr-cs / autocorr-da / etc"); } }NASL family Oracle Linux Local Security Checks NASL id ORACLELINUX_ELSA-2015-1458.NASL description From Red Hat Security Advisory 2015:1458 : Updated libreoffice packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. A flaw was found in the way the LibreOffice HWP (Hangul Word Processor) file filter processed certain HWP documents. An attacker able to trick a user into opening a specially crafted HWP document could possibly use this flaw to execute arbitrary code with the privileges of the user opening that document. (CVE-2015-1774) The libreoffice packages have been upgraded to upstream version 4.2.8.2, which provides a number of bug fixes and enhancements over the previous version, including : * OpenXML interoperability has been improved. * This update adds additional statistics functions to the Calc application, thus improving interoperability with Microsoft Excel and its last seen 2020-06-01 modified 2020-06-02 plugin id 85110 published 2015-07-30 reporter This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/85110 title Oracle Linux 6 : libreoffice (ELSA-2015-1458) code # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Red Hat Security Advisory RHSA-2015:1458 and # Oracle Linux Security Advisory ELSA-2015-1458 respectively. # include("compat.inc"); if (description) { script_id(85110); script_version("2.6"); script_cvs_date("Date: 2019/09/27 13:00:36"); script_cve_id("CVE-2015-1774"); script_bugtraq_id(74338); script_xref(name:"RHSA", value:"2015:1458"); script_name(english:"Oracle Linux 6 : libreoffice (ELSA-2015-1458)"); script_summary(english:"Checks rpm output for the updated packages"); script_set_attribute( attribute:"synopsis", value:"The remote Oracle Linux host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "From Red Hat Security Advisory 2015:1458 : Updated libreoffice packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. A flaw was found in the way the LibreOffice HWP (Hangul Word Processor) file filter processed certain HWP documents. An attacker able to trick a user into opening a specially crafted HWP document could possibly use this flaw to execute arbitrary code with the privileges of the user opening that document. (CVE-2015-1774) The libreoffice packages have been upgraded to upstream version 4.2.8.2, which provides a number of bug fixes and enhancements over the previous version, including : * OpenXML interoperability has been improved. * This update adds additional statistics functions to the Calc application, thus improving interoperability with Microsoft Excel and its 'Analysis ToolPak' add-in. * Various performance improvements have been implemented in Calc. * This update adds new import filters for importing files from the Appple Keynote and Abiword applications. * The export filter for the MathML markup language has been improved. * This update adds a new start screen that includes thumbnails of recently opened documents. * A visual clue is now displayed in the Slide Sorter window for slides with transitions or animations. * This update improves trend lines in charts. * LibreOffice now supports BCP 47 language tags. For a complete list of bug fixes and enhancements provided by this rebase, see the libreoffice change log linked from the References section. (BZ#1150048) Users of libreoffice are advised to upgrade to these updated packages, which correct these issues and add these enhancements." ); script_set_attribute( attribute:"see_also", value:"https://oss.oracle.com/pipermail/el-errata/2015-July/005235.html" ); script_set_attribute( attribute:"solution", value:"Update the affected libreoffice packages." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-fa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-is"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-lb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-mn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-pt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-vi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-zh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-base"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-bsh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-calc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-core"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-draw"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-emailmerge"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-filters"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-gdb-debug-support"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-glade"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-graphicfilter"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-headless"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-impress"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ar"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-as"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-bn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-cy"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-dz"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-el"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-et"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-eu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-gl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-gu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-he"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-hi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-kn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-mai"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ml"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-mr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ms"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-nb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-nn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-nr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-nso"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-or"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-pa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-pt-BR"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-pt-PT"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ss"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-st"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ta"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-te"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-th"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-tn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-uk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ur"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ve"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-xh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-zh-Hans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-zh-Hant"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-zu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-librelogo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-math"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-nlpsolver"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-ogltrans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-opensymbol-fonts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-pdfimport"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-pyuno"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-rhino"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-sdk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-sdk-doc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-ure"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-wiki-publisher"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-writer"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-xsltfilter"); script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:6"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/04/28"); script_set_attribute(attribute:"patch_publication_date", value:"2015/07/29"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/07/30"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Oracle Linux Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/OracleLinux", "Host/RedHat/release", "Host/RedHat/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (!get_kb_item("Host/OracleLinux")) audit(AUDIT_OS_NOT, "Oracle Linux"); release = get_kb_item("Host/RedHat/release"); if (isnull(release) || !pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux)", string:release)) audit(AUDIT_OS_NOT, "Oracle Linux"); os_ver = pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\.[0-9]+)?)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Oracle Linux"); os_ver = os_ver[1]; if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Oracle Linux 6", "Oracle Linux " + os_ver); if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Oracle Linux", cpu); flag = 0; if (rpm_check(release:"EL6", reference:"autocorr-af-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-bg-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-ca-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-cs-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-da-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-de-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-en-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-es-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-fa-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-fi-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-fr-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-ga-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-hr-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-hu-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-is-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-it-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-ja-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-ko-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-lb-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-lt-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-mn-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-nl-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-pl-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-pt-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-ro-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-ru-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-sk-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-sl-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-sr-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-sv-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-tr-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-vi-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-zh-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-base-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-bsh-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-calc-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-core-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-draw-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-emailmerge-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-filters-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-gdb-debug-support-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-glade-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-graphicfilter-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-headless-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-impress-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-af-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ar-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-as-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-bg-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-bn-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ca-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-cs-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-cy-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-da-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-de-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-dz-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-el-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-en-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-es-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-et-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-eu-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-fi-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-fr-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ga-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-gl-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-gu-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-he-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-hi-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-hr-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-hu-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-it-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ja-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-kn-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ko-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-lt-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-mai-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ml-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-mr-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ms-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-nb-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-nl-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-nn-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-nr-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-nso-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-or-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-pa-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-pl-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-pt-BR-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-pt-PT-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ro-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ru-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-sk-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-sl-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-sr-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ss-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-st-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-sv-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ta-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-te-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-th-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-tn-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-tr-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ts-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-uk-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ur-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ve-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-xh-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-zh-Hans-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-zh-Hant-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-zu-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-librelogo-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-math-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-nlpsolver-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-ogltrans-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-opensymbol-fonts-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-pdfimport-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-pyuno-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-rhino-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-sdk-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-sdk-doc-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-ure-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-wiki-publisher-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-writer-4.2.8.2-11.0.1.el6")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-xsltfilter-4.2.8.2-11.0.1.el6")) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get()); else security_warning(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "autocorr-af / autocorr-bg / autocorr-ca / autocorr-cs / autocorr-da / etc"); }NASL family CentOS Local Security Checks NASL id CENTOS_RHSA-2015-1458.NASL description Updated libreoffice packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. A flaw was found in the way the LibreOffice HWP (Hangul Word Processor) file filter processed certain HWP documents. An attacker able to trick a user into opening a specially crafted HWP document could possibly use this flaw to execute arbitrary code with the privileges of the user opening that document. (CVE-2015-1774) The libreoffice packages have been upgraded to upstream version 4.2.8.2, which provides a number of bug fixes and enhancements over the previous version, including : * OpenXML interoperability has been improved. * This update adds additional statistics functions to the Calc application, thus improving interoperability with Microsoft Excel and its last seen 2020-06-01 modified 2020-06-02 plugin id 85024 published 2015-07-28 reporter This script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/85024 title CentOS 6 : libreoffice (CESA-2015:1458) code # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Red Hat Security Advisory RHSA-2015:1458 and # CentOS Errata and Security Advisory 2015:1458 respectively. # include("compat.inc"); if (description) { script_id(85024); script_version("2.5"); script_cvs_date("Date: 2020/01/02"); script_cve_id("CVE-2015-1774"); script_bugtraq_id(74338); script_xref(name:"RHSA", value:"2015:1458"); script_name(english:"CentOS 6 : libreoffice (CESA-2015:1458)"); script_summary(english:"Checks rpm output for the updated packages"); script_set_attribute( attribute:"synopsis", value:"The remote CentOS host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "Updated libreoffice packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. A flaw was found in the way the LibreOffice HWP (Hangul Word Processor) file filter processed certain HWP documents. An attacker able to trick a user into opening a specially crafted HWP document could possibly use this flaw to execute arbitrary code with the privileges of the user opening that document. (CVE-2015-1774) The libreoffice packages have been upgraded to upstream version 4.2.8.2, which provides a number of bug fixes and enhancements over the previous version, including : * OpenXML interoperability has been improved. * This update adds additional statistics functions to the Calc application, thus improving interoperability with Microsoft Excel and its 'Analysis ToolPak' add-in. * Various performance improvements have been implemented in Calc. * This update adds new import filters for importing files from the Appple Keynote and Abiword applications. * The export filter for the MathML markup language has been improved. * This update adds a new start screen that includes thumbnails of recently opened documents. * A visual clue is now displayed in the Slide Sorter window for slides with transitions or animations. * This update improves trend lines in charts. * LibreOffice now supports BCP 47 language tags. For a complete list of bug fixes and enhancements provided by this rebase, see the libreoffice change log linked from the References section. (BZ#1150048) Users of libreoffice are advised to upgrade to these updated packages, which correct these issues and add these enhancements." ); # https://lists.centos.org/pipermail/centos-cr-announce/2015-July/002094.html script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?e7f99aa6" ); script_set_attribute( attribute:"solution", value:"Update the affected libreoffice packages." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-1774"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-fa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-is"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-lb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-mn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-pt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-vi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-zh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-base"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-bsh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-calc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-core"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-draw"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-emailmerge"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-filters"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-gdb-debug-support"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-glade"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-graphicfilter"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-headless"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-impress"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ar"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-as"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-bn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-cy"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-dz"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-el"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-et"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-eu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-gl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-gu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-he"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-hi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-kn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-mai"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ml"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-mr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ms"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-nb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-nn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-nr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-nso"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-or"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-pa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-pt-BR"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-pt-PT"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ss"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-st"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ta"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-te"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-th"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-tn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-uk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ur"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ve"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-xh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-zh-Hans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-zh-Hant"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-zu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-librelogo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-math"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-nlpsolver"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-ogltrans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-opensymbol-fonts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-pdfimport"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-pyuno"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-rhino"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-sdk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-sdk-doc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-ure"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-wiki-publisher"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-writer"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-xsltfilter"); script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:6"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/04/28"); script_set_attribute(attribute:"patch_publication_date", value:"2015/07/26"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/07/28"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"CentOS Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/CentOS/release", "Host/CentOS/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/CentOS/release"); if (isnull(release) || "CentOS" >!< release) audit(AUDIT_OS_NOT, "CentOS"); os_ver = pregmatch(pattern: "CentOS(?: Linux)? release ([0-9]+)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "CentOS"); os_ver = os_ver[1]; if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "CentOS 6.x", "CentOS " + os_ver); if (!get_kb_item("Host/CentOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "CentOS", cpu); flag = 0; if (rpm_check(release:"CentOS-6", reference:"autocorr-af-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-bg-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-ca-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-cs-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-da-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-de-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-en-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-es-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-fa-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-fi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-fr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-ga-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-hr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-hu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-is-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-it-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-ja-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-ko-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-lb-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-lt-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-mn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-nl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-pl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-pt-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-ro-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-ru-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-sk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-sl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-sr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-sv-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-tr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-vi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-zh-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-base-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-bsh-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-calc-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-core-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-draw-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-emailmerge-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-filters-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-gdb-debug-support-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-glade-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-graphicfilter-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-headless-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-impress-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-af-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ar-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-as-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-bg-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-bn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ca-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-cs-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-cy-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-da-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-de-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-dz-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-el-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-en-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-es-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-et-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-eu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-fi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-fr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ga-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-gl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-gu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-he-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-hi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-hr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-hu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-it-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ja-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-kn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ko-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-lt-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-mai-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ml-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-mr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ms-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-nb-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-nl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-nn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-nr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-nso-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-or-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-pa-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-pl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-pt-BR-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-pt-PT-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ro-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ru-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-sk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-sl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-sr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ss-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-st-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-sv-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ta-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-te-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-th-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-tn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-tr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ts-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-uk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ur-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ve-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-xh-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-zh-Hans-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-zh-Hant-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-zu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-librelogo-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-math-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-nlpsolver-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-ogltrans-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-opensymbol-fonts-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-pdfimport-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-pyuno-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-rhino-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-sdk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-sdk-doc-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-ure-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-wiki-publisher-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-writer-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-xsltfilter-4.2.8.2-11.el6")) flag++; if (flag) { cr_plugin_caveat = '\n' + 'NOTE: The security advisory associated with this vulnerability has a\n' + 'fixed package version that may only be available in the continuous\n' + 'release (CR) repository for CentOS, until it is present in the next\n' + 'point release of CentOS.\n\n' + 'If an equal or higher package level does not exist in the baseline\n' + 'repository for your major version of CentOS, then updates from the CR\n' + 'repository will need to be applied in order to address the\n' + 'vulnerability.\n'; security_report_v4( port : 0, severity : SECURITY_WARNING, extra : rpm_report_get() + cr_plugin_caveat ); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "autocorr-af / autocorr-bg / autocorr-ca / autocorr-cs / autocorr-da / etc"); }NASL family Scientific Linux Local Security Checks NASL id SL_20150722_LIBREOFFICE_ON_SL6_X.NASL description A flaw was found in the way the LibreOffice HWP (Hangul Word Processor) file filter processed certain HWP documents. An attacker able to trick a user into opening a specially crafted HWP document could possibly use this flaw to execute arbitrary code with the privileges of the user opening that document. (CVE-2015-1774) The libreoffice packages have been upgraded to upstream version 4.2.8.2, which provides a number of bug fixes and enhancements over the previous version, including : - OpenXML interoperability has been improved. - This update adds additional statistics functions to the Calc application, thus improving interoperability with Microsoft Excel and its last seen 2020-03-18 modified 2015-08-04 plugin id 85199 published 2015-08-04 reporter This script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/85199 title Scientific Linux Security Update : libreoffice on SL6.x i386/x86_64 (20150722) code # # (C) Tenable Network Security, Inc. # # The descriptive text is (C) Scientific Linux. # include("compat.inc"); if (description) { script_id(85199); script_version("2.3"); script_set_attribute(attribute:"plugin_modification_date", value:"2020/02/25"); script_cve_id("CVE-2015-1774"); script_name(english:"Scientific Linux Security Update : libreoffice on SL6.x i386/x86_64 (20150722)"); script_summary(english:"Checks rpm output for the updated packages"); script_set_attribute( attribute:"synopsis", value: "The remote Scientific Linux host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "A flaw was found in the way the LibreOffice HWP (Hangul Word Processor) file filter processed certain HWP documents. An attacker able to trick a user into opening a specially crafted HWP document could possibly use this flaw to execute arbitrary code with the privileges of the user opening that document. (CVE-2015-1774) The libreoffice packages have been upgraded to upstream version 4.2.8.2, which provides a number of bug fixes and enhancements over the previous version, including : - OpenXML interoperability has been improved. - This update adds additional statistics functions to the Calc application, thus improving interoperability with Microsoft Excel and its 'Analysis ToolPak' add-in. - Various performance improvements have been implemented in Calc. - This update adds new import filters for importing files from the Appple Keynote and Abiword applications. - The export filter for the MathML markup language has been improved. - This update adds a new start screen that includes thumbnails of recently opened documents. - A visual clue is now displayed in the Slide Sorter window for slides with transitions or animations. - This update improves trend lines in charts. - LibreOffice now supports BCP 47 language tags." ); # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1508&L=scientific-linux-errata&F=&S=&P=5487 script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?335b4d81" ); script_set_attribute(attribute:"solution", value:"Update the affected packages."); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-fa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-is"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-lb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-mn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-pt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-vi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-zh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-base"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-bsh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-calc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-core"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-draw"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-emailmerge"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-filters"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-gdb-debug-support"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-glade"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-graphicfilter"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-headless"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-impress"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ar"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-as"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-bn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-cy"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-dz"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-el"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-et"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-eu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-gl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-gu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-he"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-hi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-kn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-mai"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ml"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-mr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ms"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-nb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-nn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-nr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-nso"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-or"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-pa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-pt-BR"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-pt-PT"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ss"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-st"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ta"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-te"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-th"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-tn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-uk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ur"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ve"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-xh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-zh-Hans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-zh-Hant"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-zu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-librelogo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-math"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-nlpsolver"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-ogltrans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-opensymbol-fonts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-pdfimport"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-pyuno"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-rhino"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-sdk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-sdk-doc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-ure"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-wiki-publisher"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-writer"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-xsltfilter"); script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/04/28"); script_set_attribute(attribute:"patch_publication_date", value:"2015/07/22"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/08/04"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Scientific Linux Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("misc_func.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/RedHat/release"); if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux"); os_ver = pregmatch(pattern: "Scientific Linux.*release ([0-9]+(\.[0-9]+)?)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Scientific Linux"); os_ver = os_ver[1]; if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Scientific Linux 6.x", "Scientific Linux " + os_ver); if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu); flag = 0; if (rpm_check(release:"SL6", reference:"autocorr-af-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-bg-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-ca-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-cs-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-da-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-de-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-en-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-es-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-fa-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-fi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-fr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-ga-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-hr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-hu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-is-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-it-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-ja-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-ko-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-lb-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-lt-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-mn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-nl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-pl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-pt-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-ro-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-ru-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-sk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-sl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-sr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-sv-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-tr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-vi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-zh-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-base-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-bsh-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-calc-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-core-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-debuginfo-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-draw-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-emailmerge-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-filters-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-gdb-debug-support-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-glade-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-graphicfilter-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-headless-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-impress-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-af-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ar-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-as-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-bg-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-bn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ca-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-cs-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-cy-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-da-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-de-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-dz-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-el-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-en-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-es-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-et-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-eu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-fi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-fr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ga-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-gl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-gu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-he-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-hi-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-hr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-hu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-it-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ja-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-kn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ko-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-lt-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-mai-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ml-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-mr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ms-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-nb-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-nl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-nn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-nr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-nso-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-or-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-pa-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-pl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-pt-BR-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-pt-PT-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ro-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ru-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-sk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-sl-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-sr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ss-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-st-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-sv-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ta-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-te-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-th-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-tn-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-tr-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ts-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-uk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ur-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ve-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-xh-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-zh-Hans-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-zh-Hant-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-zu-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-librelogo-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-math-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-nlpsolver-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-ogltrans-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-opensymbol-fonts-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-pdfimport-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-pyuno-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-rhino-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-sdk-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-sdk-doc-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-ure-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-wiki-publisher-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-writer-4.2.8.2-11.el6")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-xsltfilter-4.2.8.2-11.el6")) flag++; if (flag) { security_report_v4( port : 0, severity : SECURITY_WARNING, extra : rpm_report_get() ); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "autocorr-af / autocorr-bg / autocorr-ca / autocorr-cs / autocorr-da / etc"); }NASL family Fedora Local Security Checks NASL id FEDORA_2015-7213.NASL description CVE-2015-1774: out-of-bounds write in HWP file filter Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-06-05 modified 2015-05-11 plugin id 83325 published 2015-05-11 reporter This script is Copyright (C) 2015-2020 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/83325 title Fedora 20 : libreoffice-4.2.8.2-8.fc20 (2015-7213) code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Fedora Security Advisory 2015-7213. # include("compat.inc"); if (description) { script_id(83325); script_version("2.3"); script_set_attribute(attribute:"plugin_modification_date", value:"2020/06/04"); script_cve_id("CVE-2015-1774"); script_xref(name:"FEDORA", value:"2015-7213"); script_name(english:"Fedora 20 : libreoffice-4.2.8.2-8.fc20 (2015-7213)"); script_summary(english:"Checks rpm output for the updated package."); script_set_attribute( attribute:"synopsis", value:"The remote Fedora host is missing a security update." ); script_set_attribute( attribute:"description", value: "CVE-2015-1774: out-of-bounds write in HWP file filter Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues." ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=1216042" ); # https://lists.fedoraproject.org/pipermail/package-announce/2015-May/157550.html script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?e800a3ce" ); script_set_attribute( attribute:"solution", value:"Update the affected libreoffice package." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:libreoffice"); script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:20"); script_set_attribute(attribute:"patch_publication_date", value:"2015/04/30"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/05/11"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2015-2020 Tenable Network Security, Inc."); script_family(english:"Fedora Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/RedHat/release"); if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora"); os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora"); os_ver = os_ver[1]; if (! ereg(pattern:"^20([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 20.x", "Fedora " + os_ver); if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu); flag = 0; if (rpm_check(release:"FC20", reference:"libreoffice-4.2.8.2-8.fc20")) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get()); else security_warning(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libreoffice"); }NASL family SuSE Local Security Checks NASL id SUSE_SU-2015-1915-1.NASL description This update brings LibreOffice to version 5.0.2, a major version update. It brings lots of new features, bugfixes and also security fixes. Features as seen on http://www.libreoffice.org/discover/new-features/ - LibreOffice 5.0 ships an impressive number of new features for its spreadsheet module, Calc: complex formulae image cropping, new functions, more powerful conditional formatting, table addressing and much more. Calc last seen 2020-06-01 modified 2020-06-02 plugin id 86757 published 2015-11-05 reporter This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/86757 title SUSE SLED12 / SLES12 Security Update : Recommended update for LibreOffice (SUSE-SU-2015:1915-1) code # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from SUSE update advisory SUSE-SU-2015:1915-1. # The text itself is copyright (C) SUSE. # include("compat.inc"); if (description) { script_id(86757); script_version("2.13"); script_cvs_date("Date: 2019/09/11 11:22:12"); script_cve_id("CVE-2014-8146", "CVE-2014-8147", "CVE-2015-1774", "CVE-2015-4551", "CVE-2015-5212", "CVE-2015-5213", "CVE-2015-5214"); script_bugtraq_id(74338, 74457); script_name(english:"SUSE SLED12 / SLES12 Security Update : Recommended update for LibreOffice (SUSE-SU-2015:1915-1)"); script_summary(english:"Checks rpm output for the updated packages."); script_set_attribute( attribute:"synopsis", value:"The remote SUSE host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "This update brings LibreOffice to version 5.0.2, a major version update. It brings lots of new features, bugfixes and also security fixes. Features as seen on http://www.libreoffice.org/discover/new-features/ - LibreOffice 5.0 ships an impressive number of new features for its spreadsheet module, Calc: complex formulae image cropping, new functions, more powerful conditional formatting, table addressing and much more. Calc's blend of performance and features makes it an enterprise-ready, heavy duty spreadsheet application capable of handling all kinds of workload for an impressive range of use cases - New icons, major improvements to menus and sidebar : no other LibreOffice version has looked that good and helped you be creative and get things done the right way. In addition, style management is now more intuitive thanks to the visualization of styles right in the interface. - LibreOffice 5 ships with numerous improvements to document import and export filters for MS Office, PDF, RTF, and more. You can now timestamp PDF documents generated with LibreOffice and enjoy enhanced document conversion fidelity all around. The Pentaho Flow Reporting Engine is now added and used. Security issues fixed : - CVE-2014-8146: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 did not properly track directionally isolated pieces of text, which allowed remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via crafted text. - CVE-2014-8147: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 used an integer data type that is inconsistent with a header file, which allowed remote attackers to cause a denial of service (incorrect malloc followed by invalid free) or possibly execute arbitrary code via crafted text. - CVE-2015-4551: An arbitrary file disclosure vulnerability in Libreoffice and Openoffice Calc and Writer was fixed. - CVE-2015-1774: The HWP filter in LibreOffice allowed remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP document, which triggered an out-of-bounds write. - CVE-2015-5212: A LibreOffice 'PrinterSetup Length' integer underflow vulnerability could be used by attackers supplying documents to execute code as the user opening the document. - CVE-2015-5213: A LibreOffice 'Piece Table Counter' invalid check design error vulnerability allowed attackers supplying documents to execute code as the user opening the document. - CVE-2015-5214: Multiple Vendor LibreOffice Bookmark Status Memory Corruption Vulnerability allowed attackers supplying documents to execute code as the user opening the document. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues." ); # http://www.libreoffice.org/discover/new-features/ script_set_attribute( attribute:"see_also", value:"https://www.libreoffice.org/discover/new-features/" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=470073" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=806250" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=829430" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=890735" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=900186" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=900877" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=907966" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=910805" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=910806" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=913042" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=914911" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=915996" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=916181" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=918852" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=919409" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=926375" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=929793" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=934423" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=936188" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=936190" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=940838" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=943075" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=945692" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2014-8146/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2014-8147/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2015-1774/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2015-4551/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2015-5212/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2015-5213/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2015-5214/" ); # https://www.suse.com/support/update/announcement/2015/suse-su-20151915-1.html script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?dd02c58f" ); script_set_attribute( attribute:"solution", value: "To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product : SUSE Linux Enterprise Workstation Extension 12 : zypper in -t patch SUSE-SLE-WE-12-2015-797=1 SUSE Linux Enterprise Software Development Kit 12 : zypper in -t patch SUSE-SLE-SDK-12-2015-797=1 SUSE Linux Enterprise Server 12 : zypper in -t patch SUSE-SLE-SERVER-12-2015-797=1 SUSE Linux Enterprise Desktop 12 : zypper in -t patch SUSE-SLE-DESKTOP-12-2015-797=1 To bring your system up-to-date, use 'zypper patch'." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available"); script_set_attribute(attribute:"exploit_available", value:"true"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:cmis-client-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:cmis-client-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:graphite2-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:graphite2-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:hyphen-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libabw-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libabw-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libabw-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libcdr-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libcdr-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libcdr-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libcmis-0_5"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libcmis-0_5-5-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libe-book-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libe-book-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libe-book-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libetonyek-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libetonyek-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libetonyek-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libfreehand-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libfreehand-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libfreehand-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgltf-0_0"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgltf-0_0-0-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgltf-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgraphite2"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgraphite2-3"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgraphite2-3-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libhyphen0"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libhyphen0-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libixion-0_10"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libixion-0_10-0-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libixion-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:liblangtag-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:liblangtag1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:liblangtag1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmspub-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmspub-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmspub-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmwaw-0_3"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmwaw-0_3-3-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmwaw-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libodfgen-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libodfgen-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libodfgen-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:liborcus-0_8"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:liborcus-0_8-0-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:liborcus-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libpagemaker-0_0"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libpagemaker-0_0-0-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libpagemaker-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base-drivers-mysql"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base-drivers-mysql-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base-drivers-postgresql"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base-drivers-postgresql-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-calc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-calc-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-calc-extensions"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-draw"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-draw-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-filters-optional"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-gnome"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-gnome-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-impress"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-impress-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-mailmerge"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-math"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-math-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-officebean"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-officebean-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-pyuno"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-pyuno-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-voikko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-voikko-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-writer"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-writer-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-writer-extensions"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librevenge-0_0"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librevenge-0_0-0-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librevenge-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librevenge-stream-0_0"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librevenge-stream-0_0-0-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libvisio-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libvisio-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libvisio-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libvoikko-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libvoikko1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libvoikko1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libwps-0_4"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libwps-0_4-4-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libwps-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:myspell-dictionaries"); script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/04/28"); script_set_attribute(attribute:"patch_publication_date", value:"2015/10/09"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/11/05"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"SuSE Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/SuSE/release"); if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE"); os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE"); os_ver = os_ver[1]; if (! preg(pattern:"^(SLED12|SLES12)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLED12 / SLES12", "SUSE " + os_ver); if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu); sp = get_kb_item("Host/SuSE/patchlevel"); if (isnull(sp)) sp = "0"; if (os_ver == "SLES12" && (! preg(pattern:"^(0)$", string:sp))) audit(AUDIT_OS_NOT, "SLES12 SP0", os_ver + " SP" + sp); if (os_ver == "SLED12" && (! preg(pattern:"^(0)$", string:sp))) audit(AUDIT_OS_NOT, "SLED12 SP0", os_ver + " SP" + sp); flag = 0; if (rpm_check(release:"SLES12", sp:"0", reference:"graphite2-debuginfo-1.3.1-3.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"graphite2-debugsource-1.3.1-3.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"libgraphite2-3-1.3.1-3.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"libgraphite2-3-debuginfo-1.3.1-3.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"libgraphite2-3-32bit-1.3.1-3.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"libgraphite2-3-debuginfo-32bit-1.3.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"cmis-client-debuginfo-0.5.0-5.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"cmis-client-debugsource-0.5.0-5.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"graphite2-debuginfo-1.3.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"graphite2-debugsource-1.3.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"hyphen-debugsource-2.8.8-9.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libabw-0_1-1-0.1.1-5.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libabw-0_1-1-debuginfo-0.1.1-5.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libabw-debugsource-0.1.1-5.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libcdr-0_1-1-0.1.1-5.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libcdr-0_1-1-debuginfo-0.1.1-5.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libcdr-debugsource-0.1.1-5.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libcmis-0_5-5-0.5.0-5.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libcmis-0_5-5-debuginfo-0.5.0-5.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libe-book-0_1-1-0.1.2-4.2")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libe-book-0_1-1-debuginfo-0.1.2-4.2")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libe-book-debugsource-0.1.2-4.2")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libetonyek-0_1-1-0.1.3-3.5")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libetonyek-0_1-1-debuginfo-0.1.3-3.5")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libetonyek-debugsource-0.1.3-3.5")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libfreehand-0_1-1-0.1.1-4.9")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libfreehand-0_1-1-debuginfo-0.1.1-4.9")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libfreehand-debugsource-0.1.1-4.9")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgltf-0_0-0-0.0.1-2.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgltf-0_0-0-debuginfo-0.0.1-2.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgltf-debugsource-0.0.1-2.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgraphite2-3-1.3.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgraphite2-3-32bit-1.3.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgraphite2-3-debuginfo-1.3.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgraphite2-3-debuginfo-32bit-1.3.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libhyphen0-2.8.8-9.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libhyphen0-debuginfo-2.8.8-9.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libixion-0_10-0-0.9.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libixion-0_10-0-debuginfo-0.9.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libixion-debugsource-0.9.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"liblangtag-debugsource-0.5.7-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"liblangtag1-0.5.7-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"liblangtag1-debuginfo-0.5.7-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libmspub-0_1-1-0.1.2-5.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libmspub-0_1-1-debuginfo-0.1.2-5.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libmspub-debugsource-0.1.2-5.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libmwaw-0_3-3-0.3.6-3.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libmwaw-0_3-3-debuginfo-0.3.6-3.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libmwaw-debugsource-0.3.6-3.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libodfgen-0_1-1-0.1.4-3.9")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libodfgen-0_1-1-debuginfo-0.1.4-3.9")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libodfgen-debugsource-0.1.4-3.9")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"liborcus-0_8-0-0.7.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"liborcus-0_8-0-debuginfo-0.7.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"liborcus-debugsource-0.7.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libpagemaker-0_0-0-0.0.2-2.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libpagemaker-0_0-0-debuginfo-0.0.2-2.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libpagemaker-debugsource-0.0.2-2.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-base-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-base-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-base-drivers-mysql-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-base-drivers-mysql-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-base-drivers-postgresql-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-base-drivers-postgresql-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-calc-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-calc-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-calc-extensions-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-debugsource-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-draw-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-draw-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-filters-optional-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-gnome-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-gnome-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-impress-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-impress-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-mailmerge-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-math-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-math-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-officebean-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-officebean-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-pyuno-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-pyuno-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-voikko-4.1-6.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-voikko-debuginfo-4.1-6.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-writer-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-writer-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-writer-extensions-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"librevenge-0_0-0-0.0.2-4.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"librevenge-0_0-0-debuginfo-0.0.2-4.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"librevenge-debugsource-0.0.2-4.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"librevenge-stream-0_0-0-0.0.2-4.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"librevenge-stream-0_0-0-debuginfo-0.0.2-4.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libvisio-0_1-1-0.1.3-4.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libvisio-0_1-1-debuginfo-0.1.3-4.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libvisio-debugsource-0.1.3-4.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libvoikko-debugsource-3.7.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libvoikko1-3.7.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libvoikko1-debuginfo-3.7.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libwps-0_4-4-0.4.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libwps-0_4-4-debuginfo-0.4.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libwps-debugsource-0.4.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"myspell-dictionaries-20150827-5.1")) flag++; if (flag) { if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get()); else security_hole(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "Recommended update for LibreOffice"); }NASL family SuSE Local Security Checks NASL id OPENSUSE-2015-357.NASL description LibreOffice was updated to 4.3.7 to fix one security issue and a number of bugs. The following vulnerability was fixed : - CVE-2015-1774: Specially crafted HWP documents could have led to an application crash or possibly the execution of arbitrary code (boo#919409) The following non-security bugs were fixed : - boo#881214: Failed to launch reprots wizard in libreoffice-base with error last seen 2020-06-05 modified 2015-05-13 plugin id 83396 published 2015-05-13 reporter This script is Copyright (C) 2015-2020 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/83396 title openSUSE Security Update : libreoffice (openSUSE-2015-357) code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from openSUSE Security Update openSUSE-2015-357. # # The text description of this plugin is (C) SUSE LLC. # include("compat.inc"); if (description) { script_id(83396); script_version("2.2"); script_set_attribute(attribute:"plugin_modification_date", value:"2020/06/04"); script_cve_id("CVE-2015-1774"); script_name(english:"openSUSE Security Update : libreoffice (openSUSE-2015-357)"); script_summary(english:"Check for the openSUSE-2015-357 patch"); script_set_attribute( attribute:"synopsis", value:"The remote openSUSE host is missing a security update." ); script_set_attribute( attribute:"description", value: "LibreOffice was updated to 4.3.7 to fix one security issue and a number of bugs. The following vulnerability was fixed : - CVE-2015-1774: Specially crafted HWP documents could have led to an application crash or possibly the execution of arbitrary code (boo#919409) The following non-security bugs were fixed : - boo#881214: Failed to launch reprots wizard in libreoffice-base with error 'java.lang.NoClassDefFoundError' In addition this update contains all upstream fixes of the 4.3.7 series." ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=881214" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=919409" ); script_set_attribute( attribute:"solution", value:"Update the affected libreoffice packages." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-base"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-base-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-base-drivers-mysql"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-base-drivers-mysql-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-base-drivers-postgresql"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-base-drivers-postgresql-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-branding-upstream"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-calc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-calc-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-calc-extensions"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-draw"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-draw-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-filters-optional"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-gnome"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-gnome-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-crystal"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-galaxy"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-hicontrast"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-oxygen"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-sifr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-icon-theme-tango"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-impress"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-impress-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-kde4"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-kde4-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-ar"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-as"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-bn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-br"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-cy"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-dz"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-el"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-et"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-eu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-fa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-gl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-gu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-he"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-hi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-kk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-kn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-lv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-mai"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-ml"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-mr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-nb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-nn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-nr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-nso"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-or"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-pa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-pt-BR"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-pt-PT"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-si"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-ss"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-st"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-ta"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-te"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-th"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-tn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-ts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-uk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-ve"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-xh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-zh-Hans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-zh-Hant"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-l10n-zu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-mailmerge"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-math"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-math-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-officebean"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-officebean-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-pyuno"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-pyuno-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-sdk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-sdk-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-writer"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-writer-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libreoffice-writer-extensions"); script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:13.2"); script_set_attribute(attribute:"patch_publication_date", value:"2015/04/29"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/05/13"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2015-2020 Tenable Network Security, Inc."); script_family(english:"SuSE Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/SuSE/release"); if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE"); if (release !~ "^(SUSE13\.2)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "13.2", release); if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); ourarch = get_kb_item("Host/cpu"); if (!ourarch) audit(AUDIT_UNKNOWN_ARCH); if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch); flag = 0; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-base-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-base-debuginfo-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-base-drivers-mysql-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-base-drivers-mysql-debuginfo-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-base-drivers-postgresql-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-base-drivers-postgresql-debuginfo-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-branding-upstream-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-calc-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-calc-debuginfo-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-calc-extensions-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-debuginfo-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-debugsource-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-draw-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-draw-debuginfo-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-filters-optional-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-gnome-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-gnome-debuginfo-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-icon-theme-crystal-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-icon-theme-galaxy-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-icon-theme-hicontrast-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-icon-theme-oxygen-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-icon-theme-sifr-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-icon-theme-tango-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-impress-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-impress-debuginfo-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-kde4-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-kde4-debuginfo-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-af-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-ar-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-as-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-bg-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-bn-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-br-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-ca-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-cs-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-cy-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-da-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-de-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-dz-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-el-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-en-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-es-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-et-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-eu-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-fa-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-fi-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-fr-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-ga-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-gl-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-gu-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-he-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-hi-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-hr-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-hu-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-it-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-ja-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-kk-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-kn-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-ko-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-lt-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-lv-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-mai-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-ml-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-mr-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-nb-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-nl-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-nn-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-nr-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-nso-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-or-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-pa-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-pl-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-pt-BR-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-pt-PT-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-ro-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-ru-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-si-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-sk-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-sl-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-sr-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-ss-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-st-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-sv-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-ta-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-te-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-th-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-tn-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-tr-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-ts-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-uk-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-ve-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-xh-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-zh-Hans-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-zh-Hant-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-l10n-zu-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-mailmerge-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-math-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-math-debuginfo-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-officebean-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-officebean-debuginfo-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-pyuno-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-pyuno-debuginfo-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-sdk-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-sdk-debuginfo-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-writer-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-writer-debuginfo-4.3.7.2-18.1") ) flag++; if ( rpm_check(release:"SUSE13.2", reference:"libreoffice-writer-extensions-4.3.7.2-18.1") ) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get()); else security_warning(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libreoffice / libreoffice-base / libreoffice-base-debuginfo / etc"); }NASL family Windows NASL id OPENOFFICE_412.NASL description The version of Apache OpenOffice installed on the remote host is a version prior to 4.1.2. It is, therefore, affected by the following vulnerabilities : - An overflow condition exists in the Hangul Word Processor (HWP) filter due to improper validation of user-supplied input. A remote attacker can exploit this, via a specially crafted HWP document, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-1774) - An information disclosure vulnerability exists due to the use of stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links. A remote attacker can exploit this, via a specially crafted ODF document, to to obtain sensitive information. (CVE-2015-4551) - An integer underflow condition exists in the ReadJobSetup() function due to improper validation of user-supplied input when handling printer settings. A remote attacker can exploit this, via specially crafted PrinterSetup data in an ODF document, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5212) - An integer underflow condition exists in the WW8ScannerBase::OpenPieceTable() function due to improper validation of user-supplied input when handling the PieceTable counter. A remote attacker can exploit this, via a specially crafted .DOC file, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5213) - A memory corruption issue exists in last seen 2020-06-01 modified 2020-06-02 plugin id 86904 published 2015-11-17 reporter This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/86904 title Apache OpenOffice < 4.1.2 Multiple Vulnerabilities code # # (C) Tenable Network Security, Inc. # include("compat.inc"); if (description) { script_id(86904); script_version("1.8"); script_cvs_date("Date: 2019/11/20"); script_cve_id( "CVE-2015-1774", "CVE-2015-4551", "CVE-2015-5212", "CVE-2015-5213", "CVE-2015-5214" ); script_name(english:"Apache OpenOffice < 4.1.2 Multiple Vulnerabilities"); script_summary(english:"Checks the version of Apache OpenOffice."); script_set_attribute(attribute:"synopsis", value: "The remote Windows host has an application installed that is affected by multiple vulnerabilities."); script_set_attribute(attribute:"description", value: "The version of Apache OpenOffice installed on the remote host is a version prior to 4.1.2. It is, therefore, affected by the following vulnerabilities : - An overflow condition exists in the Hangul Word Processor (HWP) filter due to improper validation of user-supplied input. A remote attacker can exploit this, via a specially crafted HWP document, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-1774) - An information disclosure vulnerability exists due to the use of stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links. A remote attacker can exploit this, via a specially crafted ODF document, to to obtain sensitive information. (CVE-2015-4551) - An integer underflow condition exists in the ReadJobSetup() function due to improper validation of user-supplied input when handling printer settings. A remote attacker can exploit this, via specially crafted PrinterSetup data in an ODF document, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5212) - An integer underflow condition exists in the WW8ScannerBase::OpenPieceTable() function due to improper validation of user-supplied input when handling the PieceTable counter. A remote attacker can exploit this, via a specially crafted .DOC file, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5213) - A memory corruption issue exists in 'filter/ww8/ww8scan.cxx' due to improper validation of user-supplied input when handling bookmark status positions. A remote attacker can exploit this, via a specially crafted document, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5214)"); script_set_attribute(attribute:"see_also", value:"https://www.openoffice.org/security/cves/CVE-2015-1774.html"); script_set_attribute(attribute:"see_also", value:"https://www.openoffice.org/security/cves/CVE-2015-4551.html"); script_set_attribute(attribute:"see_also", value:"https://www.openoffice.org/security/cves/CVE-2015-5212.html"); script_set_attribute(attribute:"see_also", value:"https://www.openoffice.org/security/cves/CVE-2015-5213.html"); script_set_attribute(attribute:"see_also", value:"https://www.openoffice.org/security/cves/CVE-2015-5214.html"); script_set_attribute(attribute:"solution", value: "Upgrade to Apache OpenOffice version 4.1.2 or later."); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-5214"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/04/27"); script_set_attribute(attribute:"patch_publication_date", value:"2015/10/28"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/11/17"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/a:apache:openoffice"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_family(english:"Windows"); script_copyright(english:"This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_dependencies("openoffice_installed.nasl"); script_require_keys("installed_sw/OpenOffice", "SMB/Registry/Enumerated"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("misc_func.inc"); include("install_func.inc"); app_name = "OpenOffice"; get_kb_item_or_exit("SMB/Registry/Enumerated"); install = get_single_install(app_name:app_name, exit_if_unknown_ver:TRUE); build = install['version']; path = install['path']; version_ui = install['display_version']; matches = eregmatch(string:build, pattern:"([0-9]+[a-z][0-9]+)\(Build:([0-9]+)\)"); if (isnull(matches)) audit(AUDIT_VER_FAIL, app_name); buildid = int(matches[2]); if (buildid < 9782) { port = get_kb_item("SMB/transport"); if (!port) port = 445; if (report_verbosity > 0) { report = '\n Path : ' + path + '\n Installed version : ' + version_ui + '\n Fixed version : 4.1.2 (412m3 / build 9782)' + '\n'; security_warning(port:port, extra:report); } else security_warning(port); exit(0); } else audit(AUDIT_INST_PATH_NOT_VULN, app_name, version_ui, path);NASL family Ubuntu Local Security Checks NASL id UBUNTU_USN-2578-1.NASL description Alexander Cherepanov discovered that LibreOffice incorrectly handled certain RTF files. If a user were tricked into opening a specially crafted RTF document, a remote attacker could cause LibreOffice to crash, and possibly execute arbitrary code. (CVE-2014-9093) It was discovered that LibreOffice incorrectly handled certain HWP files. If a user were tricked into opening a specially crafted HWP document, a remote attacker could cause LibreOffice to crash, and possibly execute arbitrary code. (CVE-2015-1774). Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-06-01 modified 2020-06-02 plugin id 83110 published 2015-04-28 reporter Ubuntu Security Notice (C) 2015-2019 Canonical, Inc. / NASL script (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/83110 title Ubuntu 12.04 LTS / 14.04 LTS / 14.10 : libreoffice vulnerabilities (USN-2578-1) code # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Ubuntu Security Notice USN-2578-1. The text # itself is copyright (C) Canonical, Inc. See # <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered # trademark of Canonical, Inc. # include("compat.inc"); if (description) { script_id(83110); script_version("2.8"); script_cvs_date("Date: 2019/09/18 12:31:44"); script_cve_id("CVE-2014-9093", "CVE-2015-1774"); script_bugtraq_id(71313); script_xref(name:"USN", value:"2578-1"); script_name(english:"Ubuntu 12.04 LTS / 14.04 LTS / 14.10 : libreoffice vulnerabilities (USN-2578-1)"); script_summary(english:"Checks dpkg output for updated package."); script_set_attribute( attribute:"synopsis", value:"The remote Ubuntu host is missing a security-related patch." ); script_set_attribute( attribute:"description", value: "Alexander Cherepanov discovered that LibreOffice incorrectly handled certain RTF files. If a user were tricked into opening a specially crafted RTF document, a remote attacker could cause LibreOffice to crash, and possibly execute arbitrary code. (CVE-2014-9093) It was discovered that LibreOffice incorrectly handled certain HWP files. If a user were tricked into opening a specially crafted HWP document, a remote attacker could cause LibreOffice to crash, and possibly execute arbitrary code. (CVE-2015-1774). Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues." ); script_set_attribute( attribute:"see_also", value:"https://usn.ubuntu.com/2578-1/" ); script_set_attribute( attribute:"solution", value:"Update the affected libreoffice-core package." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libreoffice-core"); script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:12.04:-:lts"); script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:14.04"); script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:14.10"); script_set_attribute(attribute:"vuln_publication_date", value:"2014/11/26"); script_set_attribute(attribute:"patch_publication_date", value:"2015/04/27"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/04/28"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"Ubuntu Security Notice (C) 2015-2019 Canonical, Inc. / NASL script (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Ubuntu Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l"); exit(0); } include("audit.inc"); include("ubuntu.inc"); include("misc_func.inc"); if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/Ubuntu/release"); if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu"); release = chomp(release); if (! preg(pattern:"^(12\.04|14\.04|14\.10)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 12.04 / 14.04 / 14.10", "Ubuntu " + release); if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu); flag = 0; if (ubuntu_check(osver:"12.04", pkgname:"libreoffice-core", pkgver:"1:3.5.7-0ubuntu8")) flag++; if (ubuntu_check(osver:"14.04", pkgname:"libreoffice-core", pkgver:"1:4.2.8-0ubuntu2")) flag++; if (ubuntu_check(osver:"14.10", pkgname:"libreoffice-core", pkgver:"1:4.3.7~rc2-0ubuntu1")) flag++; if (flag) { security_report_v4( port : 0, severity : SECURITY_HOLE, extra : ubuntu_report_get() ); exit(0); } else { tested = ubuntu_pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libreoffice-core"); }NASL family Debian Local Security Checks NASL id DEBIAN_DSA-3236.NASL description It was discovered that missing input sanitising in Libreoffice last seen 2020-06-01 modified 2020-06-02 plugin id 83064 published 2015-04-27 reporter This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/83064 title Debian DSA-3236-1 : libreoffice - security update NASL family Fedora Local Security Checks NASL id FEDORA_2015-7022.NASL description Fix some .docx import crashes. And finally fix the re-render of checked->unchecked checkbox transition update to 4.3.7 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-06-05 modified 2015-04-30 plugin id 83154 published 2015-04-30 reporter This script is Copyright (C) 2015-2020 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/83154 title Fedora 21 : libreoffice-4.3.7.2-3.fc21 (2015-7022)
Redhat
| advisories |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| rpms |
|
References
- http://www.openoffice.org/security/cves/CVE-2015-1774.html
- http://www.debian.org/security/2015/dsa-3236
- https://www.libreoffice.org/about-us/security/advisories/cve-2015-1774/
- http://www.ubuntu.com/usn/USN-2578-1
- http://www.securitytracker.com/id/1032206
- http://www.securitytracker.com/id/1032205
- http://lists.fedoraproject.org/pipermail/package-announce/2015-April/156582.html
- http://rhn.redhat.com/errata/RHSA-2015-1458.html
- http://www.securityfocus.com/bid/74338
- https://security.gentoo.org/glsa/201603-05
- https://www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1094
- http://lists.opensuse.org/opensuse-updates/2015-05/msg00015.html
- http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157550.html