Vulnerabilities > CVE-2015-4551 - Information Exposure vulnerability in multiple products
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 uses the stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links, which might allow remote attackers to obtain sensitive information via a crafted document, which embeds data from local files into (1) Calc or (2) Writer.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Common Attack Pattern Enumeration and Classification (CAPEC)
- Subverting Environment Variable Values The attacker directly or indirectly modifies environment variables used by or controlling the target software. The attacker's goal is to cause the target software to deviate from its expected operation in a manner that benefits the attacker.
- Footprinting An attacker engages in probing and exploration activity to identify constituents and properties of the target. Footprinting is a general term to describe a variety of information gathering techniques, often used by attackers in preparation for some attack. It consists of using tools to learn as much as possible about the composition, configuration, and security mechanisms of the targeted application, system or network. Information that might be collected during a footprinting effort could include open ports, applications and their versions, network topology, and similar information. While footprinting is not intended to be damaging (although certain activities, such as network scans, can sometimes cause disruptions to vulnerable applications inadvertently) it may often pave the way for more damaging attacks.
- Exploiting Trust in Client (aka Make the Client Invisible) An attack of this type exploits a programs' vulnerabilities in client/server communication channel authentication and data integrity. It leverages the implicit trust a server places in the client, or more importantly, that which the server believes is the client. An attacker executes this type of attack by placing themselves in the communication channel between client and server such that communication directly to the server is possible where the server believes it is communicating only with a valid client. There are numerous variations of this type of attack.
- Browser Fingerprinting An attacker carefully crafts small snippets of Java Script to efficiently detect the type of browser the potential victim is using. Many web-based attacks need prior knowledge of the web browser including the version of browser to ensure successful exploitation of a vulnerability. Having this knowledge allows an attacker to target the victim with attacks that specifically exploit known or zero day weaknesses in the type and version of the browser used by the victim. Automating this process via Java Script as a part of the same delivery system used to exploit the browser is considered more efficient as the attacker can supply a browser fingerprinting method and integrate it with exploit code, all contained in Java Script and in response to the same web page request by the browser.
- Session Credential Falsification through Prediction This attack targets predictable session ID in order to gain privileges. The attacker can predict the session ID used during a transaction to perform spoofing and session hijacking.
Nessus
NASL family Gentoo Local Security Checks NASL id GENTOO_GLSA-201603-05.NASL description The remote host is affected by the vulnerability described in GLSA-201603-05 (LibreOffice, OpenOffice: Multiple vulnerabilities) Multiple vulnerabilities were found in both LibreOffice and OpenOffice that allow the remote execution of arbitrary code and potential Denial of Service. These vulnerabilities may be exploited through multiple vectors including crafted documents, link handling, printer setup in ODF document types, DOC file formats, and Calc spreadsheets. Please review the referenced CVE’s for specific information regarding each. Impact : A remote attacker could entice a user to open a specially crafted file using the LibreOffice or OpenOffice suite of software. Execution of these attacks could possibly result in the execution of arbitrary code with the privileges of the process or a Denial of Service condition. Workaround : There is no known work around at this time. last seen 2020-06-01 modified 2020-06-02 plugin id 89811 published 2016-03-10 reporter This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/89811 title GLSA-201603-05 : LibreOffice, OpenOffice: Multiple vulnerabilities code # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Gentoo Linux Security Advisory GLSA 201603-05. # # The advisory text is Copyright (C) 2001-2019 Gentoo Foundation, Inc. # and licensed under the Creative Commons - Attribution / Share Alike # license. See http://creativecommons.org/licenses/by-sa/3.0/ # include("compat.inc"); if (description) { script_id(89811); script_version("2.2"); script_cvs_date("Date: 2019/08/12 17:35:38"); script_cve_id("CVE-2014-3524", "CVE-2014-3575", "CVE-2014-3693", "CVE-2014-9093", "CVE-2015-1774", "CVE-2015-4551", "CVE-2015-5212", "CVE-2015-5213", "CVE-2015-5214"); script_xref(name:"GLSA", value:"201603-05"); script_name(english:"GLSA-201603-05 : LibreOffice, OpenOffice: Multiple vulnerabilities"); script_summary(english:"Checks for updated package(s) in /var/db/pkg"); script_set_attribute( attribute:"synopsis", value: "The remote Gentoo host is missing one or more security-related patches." ); script_set_attribute( attribute:"description", value: "The remote host is affected by the vulnerability described in GLSA-201603-05 (LibreOffice, OpenOffice: Multiple vulnerabilities) Multiple vulnerabilities were found in both LibreOffice and OpenOffice that allow the remote execution of arbitrary code and potential Denial of Service. These vulnerabilities may be exploited through multiple vectors including crafted documents, link handling, printer setup in ODF document types, DOC file formats, and Calc spreadsheets. Please review the referenced CVE’s for specific information regarding each. Impact : A remote attacker could entice a user to open a specially crafted file using the LibreOffice or OpenOffice suite of software. Execution of these attacks could possibly result in the execution of arbitrary code with the privileges of the process or a Denial of Service condition. Workaround : There is no known work around at this time." ); script_set_attribute( attribute:"see_also", value:"https://security.gentoo.org/glsa/201603-05" ); script_set_attribute( attribute:"solution", value: "All LibreOffice users should upgrade their respective packages to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-office/libreoffice-4.4.2' # emerge --ask --oneshot --verbose '>=app-office/libreoffice-bin-4.4.2'# emerge --ask --oneshot --verbose '>=app-office/libreoffice-bin-debug-4.4.2' All OpenOffice users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-office/openoffice-bin-4.1.2'" ); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:libreoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:libreoffice-bin"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:libreoffice-bin-debug"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:openoffice-bin"); script_set_attribute(attribute:"cpe", value:"cpe:/o:gentoo:linux"); script_set_attribute(attribute:"vuln_publication_date", value:"2014/08/26"); script_set_attribute(attribute:"patch_publication_date", value:"2016/03/09"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/03/10"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Gentoo Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Gentoo/release", "Host/Gentoo/qpkg-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("qpkg.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (!get_kb_item("Host/Gentoo/release")) audit(AUDIT_OS_NOT, "Gentoo"); if (!get_kb_item("Host/Gentoo/qpkg-list")) audit(AUDIT_PACKAGE_LIST_MISSING); flag = 0; if (qpkg_check(package:"app-office/libreoffice", unaffected:make_list("ge 4.4.2"), vulnerable:make_list("lt 4.4.2"))) flag++; if (qpkg_check(package:"app-office/libreoffice-bin", unaffected:make_list("ge 4.4.2"), vulnerable:make_list("lt 4.4.2"))) flag++; if (qpkg_check(package:"app-office/libreoffice-bin-debug", unaffected:make_list("ge 4.4.2"), vulnerable:make_list("lt 4.4.2"))) flag++; if (qpkg_check(package:"app-office/openoffice-bin", unaffected:make_list("ge 4.1.2"), vulnerable:make_list("lt 4.1.2"))) flag++; if (flag) { if (report_verbosity > 0) security_hole(port:0, extra:qpkg_report_get()); else security_hole(0); exit(0); } else { tested = qpkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "LibreOffice / OpenOffice"); }
NASL family Red Hat Local Security Checks NASL id REDHAT-RHSA-2015-2619.NASL description Updated libreoffice packages that fixes multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. It was discovered that LibreOffice did not properly restrict automatic link updates. By tricking a victim into opening specially crafted documents, an attacker could possibly use this flaw to disclose contents of files accessible by the victim. (CVE-2015-4551) An integer underflow flaw leading to a heap-based buffer overflow when parsing PrinterSetup data was discovered. By tricking a user into opening a specially crafted document, an attacker could possibly exploit this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5212) An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way LibreOffice processed certain Microsoft Word .doc files. By tricking a user into opening a specially crafted Microsoft Word .doc document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5213) It was discovered that LibreOffice did not properly sanity check bookmark indexes. By tricking a user into opening a specially crafted document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5214) All libreoffice users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. last seen 2020-06-01 modified 2020-06-02 plugin id 87337 published 2015-12-14 reporter This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/87337 title RHEL 6 / 7 : libreoffice (RHSA-2015:2619) code # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Red Hat Security Advisory RHSA-2015:2619. The text # itself is copyright (C) Red Hat, Inc. # include("compat.inc"); if (description) { script_id(87337); script_version("2.13"); script_cvs_date("Date: 2019/10/24 15:35:40"); script_cve_id("CVE-2015-4551", "CVE-2015-5212", "CVE-2015-5213", "CVE-2015-5214"); script_xref(name:"RHSA", value:"2015:2619"); script_name(english:"RHEL 6 / 7 : libreoffice (RHSA-2015:2619)"); script_summary(english:"Checks the rpm output for the updated packages"); script_set_attribute( attribute:"synopsis", value:"The remote Red Hat host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "Updated libreoffice packages that fixes multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. It was discovered that LibreOffice did not properly restrict automatic link updates. By tricking a victim into opening specially crafted documents, an attacker could possibly use this flaw to disclose contents of files accessible by the victim. (CVE-2015-4551) An integer underflow flaw leading to a heap-based buffer overflow when parsing PrinterSetup data was discovered. By tricking a user into opening a specially crafted document, an attacker could possibly exploit this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5212) An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way LibreOffice processed certain Microsoft Word .doc files. By tricking a user into opening a specially crafted Microsoft Word .doc document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5213) It was discovered that LibreOffice did not properly sanity check bookmark indexes. By tricking a user into opening a specially crafted document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5214) All libreoffice users are advised to upgrade to these updated packages, which contain backported patches to correct these issues." ); script_set_attribute( attribute:"see_also", value:"https://access.redhat.com/errata/RHSA-2015:2619" ); script_set_attribute( attribute:"see_also", value:"https://access.redhat.com/security/cve/cve-2015-5213" ); script_set_attribute( attribute:"see_also", value:"https://access.redhat.com/security/cve/cve-2015-5212" ); script_set_attribute( attribute:"see_also", value:"https://access.redhat.com/security/cve/cve-2015-4551" ); script_set_attribute( attribute:"see_also", value:"https://access.redhat.com/security/cve/cve-2015-5214" ); script_set_attribute(attribute:"solution", value:"Update the affected packages."); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-fa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-is"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-lb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-mn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-pt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-vi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:autocorr-zh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-base"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-bsh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-calc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-core"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-draw"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-emailmerge"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-filters"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-gdb-debug-support"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-glade"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-graphicfilter"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-headless"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-impress"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ar"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-as"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-bn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-br"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-cy"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-dz"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-el"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-et"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-eu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-fa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-gl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-gu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-he"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-hi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-kk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-kn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-lv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-mai"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ml"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-mr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ms"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-nb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-nn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-nr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-nso"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-or"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-pa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-pt-BR"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-pt-PT"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-si"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ss"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-st"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ta"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-te"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-th"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-tn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-uk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ur"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-ve"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-xh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-zh-Hans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-zh-Hant"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-langpack-zu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-librelogo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-math"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-nlpsolver"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-officebean"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-ogltrans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-opensymbol-fonts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-pdfimport"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-postgresql"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-pyuno"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-rhino"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-sdk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-sdk-doc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-ure"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-wiki-publisher"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-writer"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libreoffice-xsltfilter"); script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:6"); script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:6.7"); script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7"); script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.2"); script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.3"); script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.4"); script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.5"); script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.6"); script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.7"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/11/10"); script_set_attribute(attribute:"patch_publication_date", value:"2015/12/14"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/12/14"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Red Hat Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("misc_func.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/RedHat/release"); if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat"); os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat"); os_ver = os_ver[1]; if (! preg(pattern:"^(6|7)([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 6.x / 7.x", "Red Hat " + os_ver); if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu); yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo"); if (!empty_or_null(yum_updateinfo)) { rhsa = "RHSA-2015:2619"; yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa); if (!empty_or_null(yum_report)) { security_report_v4( port : 0, severity : SECURITY_WARNING, extra : yum_report ); exit(0); } else { audit_message = "affected by Red Hat security advisory " + rhsa; audit(AUDIT_OS_NOT, audit_message); } } else { flag = 0; if (rpm_check(release:"RHEL6", reference:"autocorr-af-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-bg-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-ca-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-cs-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-da-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-de-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-en-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-es-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-fa-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-fi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-fr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-ga-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-hr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-hu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-is-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-it-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-ja-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-ko-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-lb-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-lt-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-mn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-nl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-pl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-pt-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-ro-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-ru-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-sk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-sl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-sr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-sv-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-tr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-vi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"autocorr-zh-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-base-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-base-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-base-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-bsh-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-bsh-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-bsh-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-calc-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-calc-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-calc-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-core-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-core-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-core-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"libreoffice-debuginfo-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-draw-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-draw-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-draw-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-emailmerge-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-emailmerge-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-emailmerge-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-filters-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-filters-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-filters-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"libreoffice-gdb-debug-support-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-glade-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-glade-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-glade-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-graphicfilter-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-graphicfilter-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-graphicfilter-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-headless-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-headless-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-headless-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-impress-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-impress-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-impress-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-af-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-af-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-af-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ar-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ar-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ar-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-as-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-as-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-as-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-bg-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-bg-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-bg-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-bn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-bn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-bn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ca-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ca-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ca-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-cs-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-cs-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-cs-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-cy-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-cy-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-cy-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-da-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-da-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-da-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-de-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-de-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-de-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-dz-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-dz-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-dz-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-el-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-el-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-el-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-en-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-en-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-en-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-es-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-es-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-es-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-et-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-et-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-et-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-eu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-eu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-eu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-fi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-fi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-fi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-fr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-fr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-fr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ga-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ga-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ga-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-gl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-gl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-gl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-gu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-gu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-gu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-he-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-he-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-he-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-hi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-hi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-hi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-hr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-hr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-hr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-hu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-hu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-hu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-it-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-it-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-it-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ja-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ja-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ja-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-kn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-kn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-kn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ko-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ko-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ko-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-lt-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-lt-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-lt-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-mai-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-mai-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-mai-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ml-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ml-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ml-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-mr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-mr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-mr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ms-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ms-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ms-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-nb-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-nb-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-nb-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-nl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-nl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-nl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-nn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-nn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-nn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-nr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-nr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-nr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-nso-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-nso-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-nso-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-or-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-or-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-or-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-pa-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-pa-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-pa-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-pl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-pl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-pl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-pt-BR-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-pt-BR-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-pt-BR-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-pt-PT-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-pt-PT-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-pt-PT-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ro-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ro-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ro-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ru-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ru-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ru-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-sk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-sk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-sk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-sl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-sl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-sl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-sr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-sr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-sr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ss-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ss-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ss-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-st-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-st-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-st-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-sv-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-sv-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-sv-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ta-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ta-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ta-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-te-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-te-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-te-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-th-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-th-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-th-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-tn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-tn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-tn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-tr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-tr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-tr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ts-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ts-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ts-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-uk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-uk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-uk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ur-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ur-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ur-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-ve-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-ve-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-ve-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-xh-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-xh-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-xh-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-zh-Hans-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-zh-Hans-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-zh-Hans-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-zh-Hant-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-zh-Hant-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-zh-Hant-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-langpack-zu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-langpack-zu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-langpack-zu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-librelogo-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-librelogo-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-librelogo-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-math-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-math-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-math-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-nlpsolver-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-nlpsolver-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-nlpsolver-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-ogltrans-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-ogltrans-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-ogltrans-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", reference:"libreoffice-opensymbol-fonts-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-pdfimport-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-pdfimport-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-pdfimport-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-pyuno-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-pyuno-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-pyuno-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-rhino-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-rhino-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-rhino-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-sdk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-sdk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-sdk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-sdk-doc-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-sdk-doc-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-sdk-doc-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-ure-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-ure-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-ure-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-wiki-publisher-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-wiki-publisher-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-wiki-publisher-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-writer-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-writer-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-writer-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"i686", reference:"libreoffice-xsltfilter-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"libreoffice-xsltfilter-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"libreoffice-xsltfilter-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-af-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-bg-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-ca-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-cs-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-da-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-de-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-en-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-es-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-fa-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-fi-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-fr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-ga-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-hr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-hu-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-is-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-it-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-ja-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-ko-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-lb-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-lt-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-mn-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-nl-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-pl-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-pt-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-ro-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-ru-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-sk-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-sl-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-sr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-sv-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-tr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-vi-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"autocorr-zh-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-base-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-bsh-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-calc-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-core-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-debuginfo-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-draw-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-emailmerge-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-filters-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-gdb-debug-support-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-glade-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-graphicfilter-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-headless-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-impress-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-af-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-ar-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-as-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-bg-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-bn-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-br-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-ca-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-cs-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-cy-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-da-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-de-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-dz-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-el-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-en-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-es-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-et-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-eu-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-fa-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-fi-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-fr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-ga-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-gl-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-gu-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-he-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-hi-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-hr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-hu-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-it-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-ja-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-kk-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-kn-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-ko-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-lt-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-lv-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-mai-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-ml-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-mr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-nb-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-nl-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-nn-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-nr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-nso-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-or-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-pa-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-pl-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-pt-BR-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-pt-PT-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-ro-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-ru-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-si-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-sk-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-sl-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-sr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-ss-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-st-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-sv-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-ta-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-te-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-th-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-tn-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-tr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-ts-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-uk-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-ve-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-xh-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-zh-Hans-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-zh-Hant-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-langpack-zu-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-librelogo-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-math-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-nlpsolver-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-officebean-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-ogltrans-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", reference:"libreoffice-opensymbol-fonts-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-pdfimport-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-postgresql-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-pyuno-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-rhino-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-sdk-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-sdk-doc-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-ure-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-wiki-publisher-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-writer-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libreoffice-xsltfilter-4.3.7.2-5.el7_2.1")) flag++; if (flag) { security_report_v4( port : 0, severity : SECURITY_WARNING, extra : rpm_report_get() + redhat_report_package_caveat() ); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "autocorr-af / autocorr-bg / autocorr-ca / autocorr-cs / autocorr-da / etc"); } }
NASL family FreeBSD Local Security Checks NASL id FREEBSD_PKG_18B3C61B83DE11E5905BAC9E174BE3AF.NASL description The Apache OpenOffice Project reports : A vulnerability in OpenOffice settings of OpenDocument Format files and templates allows silent access to files that are readable from an user account, over-riding the user last seen 2020-06-01 modified 2020-06-02 plugin id 86775 published 2015-11-06 reporter This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/86775 title FreeBSD : OpenOffice 4.1.1 -- multiple vulnerabilities (18b3c61b-83de-11e5-905b-ac9e174be3af) code # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from the FreeBSD VuXML database : # # Copyright 2003-2018 Jacques Vidrine and contributors # # Redistribution and use in source (VuXML) and 'compiled' forms (SGML, # HTML, PDF, PostScript, RTF and so forth) with or without modification, # are permitted provided that the following conditions are met: # 1. Redistributions of source code (VuXML) must retain the above # copyright notice, this list of conditions and the following # disclaimer as the first lines of this file unmodified. # 2. Redistributions in compiled form (transformed to other DTDs, # published online in any format, converted to PDF, PostScript, # RTF and other formats) must reproduce the above copyright # notice, this list of conditions and the following disclaimer # in the documentation and/or other materials provided with the # distribution. # # THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS "AS IS" # AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, # THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR # PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS # BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, # OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT # OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR # BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, # WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE # OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION, # EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. # include("compat.inc"); if (description) { script_id(86775); script_version("2.5"); script_cvs_date("Date: 2018/11/10 11:49:44"); script_cve_id("CVE-2015-4551", "CVE-2015-5212", "CVE-2015-5213", "CVE-2015-5214"); script_name(english:"FreeBSD : OpenOffice 4.1.1 -- multiple vulnerabilities (18b3c61b-83de-11e5-905b-ac9e174be3af)"); script_summary(english:"Checks for updated packages in pkg_info output"); script_set_attribute( attribute:"synopsis", value: "The remote FreeBSD host is missing one or more security-related updates." ); script_set_attribute( attribute:"description", value: "The Apache OpenOffice Project reports : A vulnerability in OpenOffice settings of OpenDocument Format files and templates allows silent access to files that are readable from an user account, over-riding the user's default configuration settings. Once these files are imported into a maliciously-crafted document, the data can be silently hidden in the document and possibly exported to an external party without being observed. The Apache OpenOffice Project reports : A crafted ODF document can be used to create a buffer that is too small for the amount of data loaded into it, allowing an attacker to cause denial of service (memory corruption and application crash) and possible execution of arbitrary code. The Apache OpenOffice Project reports : A crafted Microsoft Word DOC file can be used to specify a document buffer that is too small for the amount of data provided for it. Failure to detect the discrepancy allows an attacker to cause denial of service (memory corruption and application crash) and possible execution of arbitrary code. The Apache OpenOffice Project reports : A crafted Microsoft Word DOC can contain invalid bookmark positions leading to memory corruption when the document is loaded or bookmarks are manipulated. The defect allows an attacker to cause denial of service (memory corruption and application crash) and possible execution of arbitrary code." ); script_set_attribute( attribute:"see_also", value:"http://www.openoffice.org/security/cves/CVE-2015-4551.html" ); script_set_attribute( attribute:"see_also", value:"http://www.openoffice.org/security/cves/CVE-2015-5212.html" ); script_set_attribute( attribute:"see_also", value:"http://www.openoffice.org/security/cves/CVE-2015-5213.html" ); script_set_attribute( attribute:"see_also", value:"http://www.openoffice.org/security/cves/CVE-2015-5214.html" ); # https://vuxml.freebsd.org/freebsd/18b3c61b-83de-11e5-905b-ac9e174be3af.html script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?13ad4927" ); script_set_attribute(attribute:"solution", value:"Update the affected packages."); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:freebsd:freebsd:apache-openoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:freebsd:freebsd:apache-openoffice-devel"); script_set_attribute(attribute:"cpe", value:"cpe:/o:freebsd:freebsd"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/11/04"); script_set_attribute(attribute:"patch_publication_date", value:"2015/11/05"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/11/06"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"FreeBSD Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/FreeBSD/release", "Host/FreeBSD/pkg_info"); exit(0); } include("audit.inc"); include("freebsd_package.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (!get_kb_item("Host/FreeBSD/release")) audit(AUDIT_OS_NOT, "FreeBSD"); if (!get_kb_item("Host/FreeBSD/pkg_info")) audit(AUDIT_PACKAGE_LIST_MISSING); flag = 0; if (pkg_test(save_report:TRUE, pkg:"apache-openoffice<4.1.2")) flag++; if (pkg_test(save_report:TRUE, pkg:"apache-openoffice-devel<4.2.1705368,3")) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get()); else security_warning(0); exit(0); } else audit(AUDIT_HOST_NOT, "affected");
NASL family Scientific Linux Local Security Checks NASL id SL_20151214_LIBREOFFICE_ON_SL6_X.NASL description It was discovered that LibreOffice did not properly restrict automatic link updates. By tricking a victim into opening specially crafted documents, an attacker could possibly use this flaw to disclose contents of files accessible by the victim. (CVE-2015-4551) An integer underflow flaw leading to a heap-based buffer overflow when parsing PrinterSetup data was discovered. By tricking a user into opening a specially crafted document, an attacker could possibly exploit this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5212) An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way LibreOffice processed certain Microsoft Word .doc files. By tricking a user into opening a specially crafted Microsoft Word .doc document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5213) It was discovered that LibreOffice did not properly sanity check bookmark indexes. By tricking a user into opening a specially crafted document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5214) last seen 2020-03-18 modified 2015-12-16 plugin id 87400 published 2015-12-16 reporter This script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/87400 title Scientific Linux Security Update : libreoffice on SL6.x i386/x86_64 (20151214) code # # (C) Tenable Network Security, Inc. # # The descriptive text is (C) Scientific Linux. # include("compat.inc"); if (description) { script_id(87400); script_version("2.3"); script_set_attribute(attribute:"plugin_modification_date", value:"2020/02/25"); script_cve_id("CVE-2015-4551", "CVE-2015-5212", "CVE-2015-5213", "CVE-2015-5214"); script_name(english:"Scientific Linux Security Update : libreoffice on SL6.x i386/x86_64 (20151214)"); script_summary(english:"Checks rpm output for the updated packages"); script_set_attribute( attribute:"synopsis", value: "The remote Scientific Linux host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "It was discovered that LibreOffice did not properly restrict automatic link updates. By tricking a victim into opening specially crafted documents, an attacker could possibly use this flaw to disclose contents of files accessible by the victim. (CVE-2015-4551) An integer underflow flaw leading to a heap-based buffer overflow when parsing PrinterSetup data was discovered. By tricking a user into opening a specially crafted document, an attacker could possibly exploit this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5212) An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way LibreOffice processed certain Microsoft Word .doc files. By tricking a user into opening a specially crafted Microsoft Word .doc document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5213) It was discovered that LibreOffice did not properly sanity check bookmark indexes. By tricking a user into opening a specially crafted document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5214)" ); # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1512&L=scientific-linux-errata&F=&S=&P=1605 script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?a4c9833f" ); script_set_attribute(attribute:"solution", value:"Update the affected packages."); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-fa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-is"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-lb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-mn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-pt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-vi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:autocorr-zh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-base"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-bsh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-calc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-core"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-draw"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-emailmerge"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-filters"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-gdb-debug-support"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-glade"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-graphicfilter"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-headless"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-impress"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ar"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-as"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-bn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-cy"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-dz"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-el"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-et"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-eu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-gl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-gu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-he"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-hi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-kn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-mai"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ml"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-mr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ms"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-nb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-nn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-nr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-nso"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-or"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-pa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-pt-BR"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-pt-PT"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ss"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-st"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ta"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-te"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-th"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-tn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-uk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ur"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-ve"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-xh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-zh-Hans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-zh-Hant"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-langpack-zu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-librelogo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-math"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-nlpsolver"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-ogltrans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-opensymbol-fonts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-pdfimport"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-pyuno"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-rhino"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-sdk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-sdk-doc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-ure"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-wiki-publisher"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-writer"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:libreoffice-xsltfilter"); script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/11/10"); script_set_attribute(attribute:"patch_publication_date", value:"2015/12/14"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/12/16"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Scientific Linux Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("misc_func.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/RedHat/release"); if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux"); os_ver = pregmatch(pattern: "Scientific Linux.*release ([0-9]+(\.[0-9]+)?)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Scientific Linux"); os_ver = os_ver[1]; if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Scientific Linux 6.x", "Scientific Linux " + os_ver); if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu); flag = 0; if (rpm_check(release:"SL6", reference:"autocorr-af-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-bg-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-ca-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-cs-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-da-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-de-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-en-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-es-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-fa-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-fi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-fr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-ga-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-hr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-hu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-is-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-it-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-ja-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-ko-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-lb-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-lt-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-mn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-nl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-pl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-pt-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-ro-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-ru-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-sk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-sl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-sr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-sv-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-tr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-vi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"autocorr-zh-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-base-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-bsh-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-calc-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-core-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-debuginfo-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-draw-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-emailmerge-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-filters-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-gdb-debug-support-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-glade-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-graphicfilter-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-headless-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-impress-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-af-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ar-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-as-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-bg-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-bn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ca-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-cs-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-cy-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-da-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-de-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-dz-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-el-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-en-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-es-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-et-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-eu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-fi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-fr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ga-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-gl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-gu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-he-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-hi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-hr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-hu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-it-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ja-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-kn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ko-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-lt-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-mai-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ml-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-mr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ms-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-nb-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-nl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-nn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-nr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-nso-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-or-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-pa-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-pl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-pt-BR-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-pt-PT-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ro-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ru-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-sk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-sl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-sr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ss-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-st-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-sv-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ta-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-te-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-th-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-tn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-tr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ts-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-uk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ur-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-ve-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-xh-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-zh-Hans-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-zh-Hant-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-langpack-zu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-librelogo-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-math-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-nlpsolver-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-ogltrans-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-opensymbol-fonts-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-pdfimport-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-pyuno-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-rhino-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-sdk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-sdk-doc-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-ure-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-wiki-publisher-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-writer-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"SL6", reference:"libreoffice-xsltfilter-4.2.8.2-11.el6_7.1")) flag++; if (flag) { security_report_v4( port : 0, severity : SECURITY_WARNING, extra : rpm_report_get() ); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "autocorr-af / autocorr-bg / autocorr-ca / autocorr-cs / autocorr-da / etc"); }
NASL family Windows NASL id LIBREOFFICE_445.NASL description The version of LibreOffice installed on the remote Windows host is prior to 4.4.5. It is, therefore, affected by the following vulnerabilities : - An information disclosure vulnerability exists due to the use of stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links. A remote attacker can exploit this, via a specially crafted ODF document, to to obtain sensitive information. (CVE-2015-4551) - An integer underflow condition exists in the ReadJobSetup() function due to improper validation of user-supplied input when handling printer settings. A remote attacker can exploit this, via specially crafted PrinterSetup data in an ODF document, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5212) - An integer underflow condition exists in the WW8ScannerBase::OpenPieceTable() function due to improper validation of user-supplied input when handling the PieceTable counter. A remote attacker can exploit this, via a specially crafted .DOC file, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5213) Note that Nessus has not attempted to exploit these issues but has instead relied only on the application last seen 2020-06-01 modified 2020-06-02 plugin id 86900 published 2015-11-17 reporter This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/86900 title LibreOffice < 4.4.5 Multiple Vulnerabilities code # # (C) Tenable Network Security, Inc. # include("compat.inc"); if (description) { script_id(86900); script_version("1.9"); script_cvs_date("Date: 2019/11/20"); script_cve_id("CVE-2015-4551", "CVE-2015-5212", "CVE-2015-5213"); script_name(english:"LibreOffice < 4.4.5 Multiple Vulnerabilities"); script_summary(english:"Checks the version of LibreOffice."); script_set_attribute(attribute:"synopsis", value: "The remote host has an application installed that is affected by multiple vulnerabilities."); script_set_attribute(attribute:"description", value: "The version of LibreOffice installed on the remote Windows host is prior to 4.4.5. It is, therefore, affected by the following vulnerabilities : - An information disclosure vulnerability exists due to the use of stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links. A remote attacker can exploit this, via a specially crafted ODF document, to to obtain sensitive information. (CVE-2015-4551) - An integer underflow condition exists in the ReadJobSetup() function due to improper validation of user-supplied input when handling printer settings. A remote attacker can exploit this, via specially crafted PrinterSetup data in an ODF document, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5212) - An integer underflow condition exists in the WW8ScannerBase::OpenPieceTable() function due to improper validation of user-supplied input when handling the PieceTable counter. A remote attacker can exploit this, via a specially crafted .DOC file, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5213) Note that Nessus has not attempted to exploit these issues but has instead relied only on the application's self-reported version number."); # https://www.libreoffice.org/about-us/security/advisories/cve-2015-4551/ script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?cdf2c164"); # https://www.libreoffice.org/about-us/security/advisories/cve-2015-5212/ script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?8a5c0096"); # https://www.libreoffice.org/about-us/security/advisories/cve-2015-5213/ script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?1b2d335c"); script_set_attribute(attribute:"see_also", value:"http://listarchives.documentfoundation.org/www/announce/msg00241.html"); script_set_attribute(attribute:"solution", value: "Upgrade to LibreOffice version 4.4.5 (4.4.5.2) or later."); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-5213"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/11/05"); script_set_attribute(attribute:"patch_publication_date", value:"2015/07/30"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/11/17"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/a:libreoffice:libreoffice"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_family(english:"Windows"); script_copyright(english:"This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_dependencies("libreoffice_installed.nasl"); script_require_keys("installed_sw/LibreOffice", "SMB/Registry/Enumerated"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("misc_func.inc"); include("install_func.inc"); app_name = "LibreOffice"; get_kb_item_or_exit("SMB/Registry/Enumerated"); install = get_single_install(app_name:app_name, exit_if_unknown_ver:TRUE); version = install['version']; version_ui = install['display_version']; path = install['path']; if ( # < 4.x version =~ "^[0-3]($|[^0-9])" || # 4.x < 4.4.5 version =~ "^(4\.[0-3]|4\.4\.[0-4])($|[^0-9])" ) { port = get_kb_item("SMB/transport"); if (!port) port = 445; if (report_verbosity > 0) { report = '\n Path : ' + path + '\n Installed version : ' + version_ui + '\n Fixed version : 4.4.5 (4.4.5.2)' + '\n'; security_warning(port:port, extra:report); } else security_warning(port); } else audit(AUDIT_INST_PATH_NOT_VULN, app_name, version_ui, path);
NASL family Gentoo Local Security Checks NASL id GENTOO_GLSA-201611-03.NASL description The remote host is affected by the vulnerability described in GLSA-201611-03 (LibreOffice, OpenOffice: Multiple vulnerabilities) Multiple vulnerabilities have been found in both LibreOffice and OpenOffice. Please review the referenced CVE’s for specific information regarding each. Impact : Remote attackers could obtain sensitive information, cause a Denial of Service condition, or execute arbitrary code. Workaround : There is no known work around at this time. last seen 2020-06-01 modified 2020-06-02 plugin id 94594 published 2016-11-07 reporter This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/94594 title GLSA-201611-03 : LibreOffice, OpenOffice: Multiple vulnerabilities code # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Gentoo Linux Security Advisory GLSA 201611-03. # # The advisory text is Copyright (C) 2001-2019 Gentoo Foundation, Inc. # and licensed under the Creative Commons - Attribution / Share Alike # license. See http://creativecommons.org/licenses/by-sa/3.0/ # include("compat.inc"); if (description) { script_id(94594); script_version("2.4"); script_cvs_date("Date: 2019/08/12 17:35:38"); script_cve_id("CVE-2015-4551", "CVE-2015-5212", "CVE-2015-5213", "CVE-2015-5214", "CVE-2016-4324"); script_xref(name:"GLSA", value:"201611-03"); script_name(english:"GLSA-201611-03 : LibreOffice, OpenOffice: Multiple vulnerabilities"); script_summary(english:"Checks for updated package(s) in /var/db/pkg"); script_set_attribute( attribute:"synopsis", value: "The remote Gentoo host is missing one or more security-related patches." ); script_set_attribute( attribute:"description", value: "The remote host is affected by the vulnerability described in GLSA-201611-03 (LibreOffice, OpenOffice: Multiple vulnerabilities) Multiple vulnerabilities have been found in both LibreOffice and OpenOffice. Please review the referenced CVE’s for specific information regarding each. Impact : Remote attackers could obtain sensitive information, cause a Denial of Service condition, or execute arbitrary code. Workaround : There is no known work around at this time." ); script_set_attribute( attribute:"see_also", value:"https://security.gentoo.org/glsa/201611-03" ); script_set_attribute( attribute:"solution", value: "All LibreOffice users should upgrade their respective packages to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-office/libreoffice-5.1.4.2' # emerge --ask --oneshot --verbose '>=app-office/libreoffice-bin-debug-5.1.4.2' All OpenOffice users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-office/openoffice-bin-4.1.2'" ); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:libreoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:libreoffice-bin"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:openoffice-bin"); script_set_attribute(attribute:"cpe", value:"cpe:/o:gentoo:linux"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/11/10"); script_set_attribute(attribute:"patch_publication_date", value:"2016/11/04"); script_set_attribute(attribute:"plugin_publication_date", value:"2016/11/07"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Gentoo Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Gentoo/release", "Host/Gentoo/qpkg-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("qpkg.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (!get_kb_item("Host/Gentoo/release")) audit(AUDIT_OS_NOT, "Gentoo"); if (!get_kb_item("Host/Gentoo/qpkg-list")) audit(AUDIT_PACKAGE_LIST_MISSING); flag = 0; if (qpkg_check(package:"app-office/libreoffice", unaffected:make_list("ge 5.1.4.2"), vulnerable:make_list("lt 5.1.4.2"))) flag++; if (qpkg_check(package:"app-office/libreoffice-bin", unaffected:make_list("ge 5.1.4.2"), vulnerable:make_list("lt 5.1.4.2"))) flag++; if (qpkg_check(package:"app-office/openoffice-bin", unaffected:make_list("ge 4.1.2"), vulnerable:make_list("lt 4.1.2"))) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:qpkg_report_get()); else security_warning(0); exit(0); } else { tested = qpkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "LibreOffice / OpenOffice"); }
NASL family CentOS Local Security Checks NASL id CENTOS_RHSA-2015-2619.NASL description Updated libreoffice packages that fixes multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. It was discovered that LibreOffice did not properly restrict automatic link updates. By tricking a victim into opening specially crafted documents, an attacker could possibly use this flaw to disclose contents of files accessible by the victim. (CVE-2015-4551) An integer underflow flaw leading to a heap-based buffer overflow when parsing PrinterSetup data was discovered. By tricking a user into opening a specially crafted document, an attacker could possibly exploit this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5212) An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way LibreOffice processed certain Microsoft Word .doc files. By tricking a user into opening a specially crafted Microsoft Word .doc document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5213) It was discovered that LibreOffice did not properly sanity check bookmark indexes. By tricking a user into opening a specially crafted document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5214) All libreoffice users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. last seen 2020-06-01 modified 2020-06-02 plugin id 87358 published 2015-12-15 reporter This script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/87358 title CentOS 6 / 7 : libreoffice (CESA-2015:2619) code # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Red Hat Security Advisory RHSA-2015:2619 and # CentOS Errata and Security Advisory 2015:2619 respectively. # include("compat.inc"); if (description) { script_id(87358); script_version("2.7"); script_cvs_date("Date: 2020/01/02"); script_cve_id("CVE-2015-4551", "CVE-2015-5212", "CVE-2015-5213", "CVE-2015-5214"); script_xref(name:"RHSA", value:"2015:2619"); script_name(english:"CentOS 6 / 7 : libreoffice (CESA-2015:2619)"); script_summary(english:"Checks rpm output for the updated packages"); script_set_attribute( attribute:"synopsis", value:"The remote CentOS host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "Updated libreoffice packages that fixes multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. It was discovered that LibreOffice did not properly restrict automatic link updates. By tricking a victim into opening specially crafted documents, an attacker could possibly use this flaw to disclose contents of files accessible by the victim. (CVE-2015-4551) An integer underflow flaw leading to a heap-based buffer overflow when parsing PrinterSetup data was discovered. By tricking a user into opening a specially crafted document, an attacker could possibly exploit this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5212) An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way LibreOffice processed certain Microsoft Word .doc files. By tricking a user into opening a specially crafted Microsoft Word .doc document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5213) It was discovered that LibreOffice did not properly sanity check bookmark indexes. By tricking a user into opening a specially crafted document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5214) All libreoffice users are advised to upgrade to these updated packages, which contain backported patches to correct these issues." ); # https://lists.centos.org/pipermail/centos-announce/2015-December/021521.html script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?9b9e64fa" ); # https://lists.centos.org/pipermail/centos-announce/2015-December/021522.html script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?4b35437a" ); script_set_attribute( attribute:"solution", value:"Update the affected libreoffice packages." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-5212"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-fa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-is"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-lb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-mn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-pt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-vi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:autocorr-zh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-base"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-bsh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-calc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-core"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-draw"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-emailmerge"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-filters"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-gdb-debug-support"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-glade"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-graphicfilter"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-headless"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-impress"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ar"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-as"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-bn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-br"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-cy"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-dz"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-el"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-et"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-eu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-fa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-gl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-gu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-he"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-hi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-kk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-kn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-lv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-mai"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ml"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-mr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ms"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-nb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-nn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-nr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-nso"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-or"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-pa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-pt-BR"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-pt-PT"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-si"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ss"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-st"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ta"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-te"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-th"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-tn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-uk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ur"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-ve"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-xh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-zh-Hans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-zh-Hant"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-langpack-zu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-librelogo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-math"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-nlpsolver"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-officebean"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-ogltrans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-opensymbol-fonts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-pdfimport"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-postgresql"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-pyuno"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-rhino"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-sdk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-sdk-doc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-ure"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-wiki-publisher"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-writer"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libreoffice-xsltfilter"); script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:6"); script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:7"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/11/10"); script_set_attribute(attribute:"patch_publication_date", value:"2015/12/14"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/12/15"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"CentOS Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/CentOS/release", "Host/CentOS/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/CentOS/release"); if (isnull(release) || "CentOS" >!< release) audit(AUDIT_OS_NOT, "CentOS"); os_ver = pregmatch(pattern: "CentOS(?: Linux)? release ([0-9]+)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "CentOS"); os_ver = os_ver[1]; if (! preg(pattern:"^(6|7)([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "CentOS 6.x / 7.x", "CentOS " + os_ver); if (!get_kb_item("Host/CentOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "CentOS", cpu); flag = 0; if (rpm_check(release:"CentOS-6", reference:"autocorr-af-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-bg-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-ca-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-cs-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-da-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-de-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-en-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-es-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-fa-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-fi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-fr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-ga-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-hr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-hu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-is-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-it-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-ja-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-ko-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-lb-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-lt-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-mn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-nl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-pl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-pt-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-ro-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-ru-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-sk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-sl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-sr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-sv-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-tr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-vi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"autocorr-zh-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-base-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-bsh-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-calc-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-core-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-draw-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-emailmerge-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-filters-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-gdb-debug-support-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-glade-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-graphicfilter-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-headless-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-impress-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-af-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ar-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-as-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-bg-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-bn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ca-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-cs-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-cy-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-da-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-de-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-dz-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-el-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-en-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-es-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-et-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-eu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-fi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-fr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ga-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-gl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-gu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-he-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-hi-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-hr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-hu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-it-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ja-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-kn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ko-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-lt-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-mai-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ml-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-mr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ms-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-nb-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-nl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-nn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-nr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-nso-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-or-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-pa-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-pl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-pt-BR-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-pt-PT-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ro-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ru-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-sk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-sl-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-sr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ss-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-st-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-sv-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ta-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-te-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-th-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-tn-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-tr-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ts-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-uk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ur-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-ve-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-xh-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-zh-Hans-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-zh-Hant-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-langpack-zu-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-librelogo-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-math-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-nlpsolver-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-ogltrans-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-opensymbol-fonts-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-pdfimport-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-pyuno-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-rhino-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-sdk-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-sdk-doc-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-ure-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-wiki-publisher-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-writer-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-6", reference:"libreoffice-xsltfilter-4.2.8.2-11.el6_7.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-af-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-bg-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-ca-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-cs-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-da-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-de-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-en-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-es-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-fa-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-fi-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-fr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-ga-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-hr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-hu-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-is-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-it-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-ja-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-ko-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-lb-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-lt-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-mn-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-nl-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-pl-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-pt-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-ro-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-ru-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-sk-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-sl-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-sr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-sv-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-tr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-vi-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"autocorr-zh-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-base-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-bsh-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-calc-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-core-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-draw-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-emailmerge-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-filters-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-gdb-debug-support-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-glade-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-graphicfilter-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-headless-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-impress-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-af-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-ar-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-as-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-bg-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-bn-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-br-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-ca-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-cs-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-cy-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-da-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-de-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-dz-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-el-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-en-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-es-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-et-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-eu-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-fa-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-fi-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-fr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-ga-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-gl-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-gu-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-he-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-hi-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-hr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-hu-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-it-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-ja-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-kk-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-kn-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-ko-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-lt-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-lv-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-mai-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-ml-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-mr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-nb-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-nl-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-nn-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-nr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-nso-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-or-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-pa-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-pl-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-pt-BR-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-pt-PT-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-ro-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-ru-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-si-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-sk-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-sl-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-sr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-ss-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-st-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-sv-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-ta-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-te-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-th-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-tn-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-tr-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-ts-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-uk-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-ve-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-xh-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-zh-Hans-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-zh-Hant-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-langpack-zu-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-librelogo-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-math-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-nlpsolver-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-officebean-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-ogltrans-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-opensymbol-fonts-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-pdfimport-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-postgresql-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-pyuno-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-rhino-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-sdk-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-sdk-doc-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-ure-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-wiki-publisher-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-writer-4.3.7.2-5.el7_2.1")) flag++; if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"libreoffice-xsltfilter-4.3.7.2-5.el7_2.1")) flag++; if (flag) { security_report_v4( port : 0, severity : SECURITY_WARNING, extra : rpm_report_get() ); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "autocorr-af / autocorr-bg / autocorr-ca / autocorr-cs / autocorr-da / etc"); }
NASL family SuSE Local Security Checks NASL id SUSE_SU-2015-1915-1.NASL description This update brings LibreOffice to version 5.0.2, a major version update. It brings lots of new features, bugfixes and also security fixes. Features as seen on http://www.libreoffice.org/discover/new-features/ - LibreOffice 5.0 ships an impressive number of new features for its spreadsheet module, Calc: complex formulae image cropping, new functions, more powerful conditional formatting, table addressing and much more. Calc last seen 2020-06-01 modified 2020-06-02 plugin id 86757 published 2015-11-05 reporter This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/86757 title SUSE SLED12 / SLES12 Security Update : Recommended update for LibreOffice (SUSE-SU-2015:1915-1) code # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from SUSE update advisory SUSE-SU-2015:1915-1. # The text itself is copyright (C) SUSE. # include("compat.inc"); if (description) { script_id(86757); script_version("2.13"); script_cvs_date("Date: 2019/09/11 11:22:12"); script_cve_id("CVE-2014-8146", "CVE-2014-8147", "CVE-2015-1774", "CVE-2015-4551", "CVE-2015-5212", "CVE-2015-5213", "CVE-2015-5214"); script_bugtraq_id(74338, 74457); script_name(english:"SUSE SLED12 / SLES12 Security Update : Recommended update for LibreOffice (SUSE-SU-2015:1915-1)"); script_summary(english:"Checks rpm output for the updated packages."); script_set_attribute( attribute:"synopsis", value:"The remote SUSE host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "This update brings LibreOffice to version 5.0.2, a major version update. It brings lots of new features, bugfixes and also security fixes. Features as seen on http://www.libreoffice.org/discover/new-features/ - LibreOffice 5.0 ships an impressive number of new features for its spreadsheet module, Calc: complex formulae image cropping, new functions, more powerful conditional formatting, table addressing and much more. Calc's blend of performance and features makes it an enterprise-ready, heavy duty spreadsheet application capable of handling all kinds of workload for an impressive range of use cases - New icons, major improvements to menus and sidebar : no other LibreOffice version has looked that good and helped you be creative and get things done the right way. In addition, style management is now more intuitive thanks to the visualization of styles right in the interface. - LibreOffice 5 ships with numerous improvements to document import and export filters for MS Office, PDF, RTF, and more. You can now timestamp PDF documents generated with LibreOffice and enjoy enhanced document conversion fidelity all around. The Pentaho Flow Reporting Engine is now added and used. Security issues fixed : - CVE-2014-8146: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 did not properly track directionally isolated pieces of text, which allowed remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via crafted text. - CVE-2014-8147: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 used an integer data type that is inconsistent with a header file, which allowed remote attackers to cause a denial of service (incorrect malloc followed by invalid free) or possibly execute arbitrary code via crafted text. - CVE-2015-4551: An arbitrary file disclosure vulnerability in Libreoffice and Openoffice Calc and Writer was fixed. - CVE-2015-1774: The HWP filter in LibreOffice allowed remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP document, which triggered an out-of-bounds write. - CVE-2015-5212: A LibreOffice 'PrinterSetup Length' integer underflow vulnerability could be used by attackers supplying documents to execute code as the user opening the document. - CVE-2015-5213: A LibreOffice 'Piece Table Counter' invalid check design error vulnerability allowed attackers supplying documents to execute code as the user opening the document. - CVE-2015-5214: Multiple Vendor LibreOffice Bookmark Status Memory Corruption Vulnerability allowed attackers supplying documents to execute code as the user opening the document. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues." ); # http://www.libreoffice.org/discover/new-features/ script_set_attribute( attribute:"see_also", value:"https://www.libreoffice.org/discover/new-features/" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=470073" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=806250" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=829430" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=890735" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=900186" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=900877" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=907966" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=910805" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=910806" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=913042" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=914911" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=915996" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=916181" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=918852" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=919409" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=926375" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=929793" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=934423" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=936188" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=936190" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=940838" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=943075" ); script_set_attribute( attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=945692" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2014-8146/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2014-8147/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2015-1774/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2015-4551/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2015-5212/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2015-5213/" ); script_set_attribute( attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2015-5214/" ); # https://www.suse.com/support/update/announcement/2015/suse-su-20151915-1.html script_set_attribute( attribute:"see_also", value:"http://www.nessus.org/u?dd02c58f" ); script_set_attribute( attribute:"solution", value: "To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product : SUSE Linux Enterprise Workstation Extension 12 : zypper in -t patch SUSE-SLE-WE-12-2015-797=1 SUSE Linux Enterprise Software Development Kit 12 : zypper in -t patch SUSE-SLE-SDK-12-2015-797=1 SUSE Linux Enterprise Server 12 : zypper in -t patch SUSE-SLE-SERVER-12-2015-797=1 SUSE Linux Enterprise Desktop 12 : zypper in -t patch SUSE-SLE-DESKTOP-12-2015-797=1 To bring your system up-to-date, use 'zypper patch'." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available"); script_set_attribute(attribute:"exploit_available", value:"true"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:cmis-client-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:cmis-client-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:graphite2-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:graphite2-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:hyphen-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libabw-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libabw-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libabw-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libcdr-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libcdr-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libcdr-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libcmis-0_5"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libcmis-0_5-5-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libe-book-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libe-book-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libe-book-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libetonyek-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libetonyek-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libetonyek-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libfreehand-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libfreehand-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libfreehand-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgltf-0_0"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgltf-0_0-0-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgltf-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgraphite2"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgraphite2-3"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgraphite2-3-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libhyphen0"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libhyphen0-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libixion-0_10"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libixion-0_10-0-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libixion-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:liblangtag-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:liblangtag1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:liblangtag1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmspub-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmspub-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmspub-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmwaw-0_3"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmwaw-0_3-3-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmwaw-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libodfgen-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libodfgen-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libodfgen-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:liborcus-0_8"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:liborcus-0_8-0-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:liborcus-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libpagemaker-0_0"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libpagemaker-0_0-0-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libpagemaker-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base-drivers-mysql"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base-drivers-mysql-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base-drivers-postgresql"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-base-drivers-postgresql-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-calc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-calc-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-calc-extensions"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-draw"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-draw-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-filters-optional"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-gnome"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-gnome-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-impress"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-impress-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-mailmerge"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-math"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-math-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-officebean"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-officebean-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-pyuno"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-pyuno-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-voikko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-voikko-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-writer"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-writer-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libreoffice-writer-extensions"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librevenge-0_0"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librevenge-0_0-0-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librevenge-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librevenge-stream-0_0"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librevenge-stream-0_0-0-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libvisio-0_1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libvisio-0_1-1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libvisio-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libvoikko-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libvoikko1"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libvoikko1-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libwps-0_4"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libwps-0_4-4-debuginfo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libwps-debugsource"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:myspell-dictionaries"); script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/04/28"); script_set_attribute(attribute:"patch_publication_date", value:"2015/10/09"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/11/05"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"SuSE Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); release = get_kb_item("Host/SuSE/release"); if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE"); os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE"); os_ver = os_ver[1]; if (! preg(pattern:"^(SLED12|SLES12)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLED12 / SLES12", "SUSE " + os_ver); if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu); sp = get_kb_item("Host/SuSE/patchlevel"); if (isnull(sp)) sp = "0"; if (os_ver == "SLES12" && (! preg(pattern:"^(0)$", string:sp))) audit(AUDIT_OS_NOT, "SLES12 SP0", os_ver + " SP" + sp); if (os_ver == "SLED12" && (! preg(pattern:"^(0)$", string:sp))) audit(AUDIT_OS_NOT, "SLED12 SP0", os_ver + " SP" + sp); flag = 0; if (rpm_check(release:"SLES12", sp:"0", reference:"graphite2-debuginfo-1.3.1-3.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"graphite2-debugsource-1.3.1-3.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"libgraphite2-3-1.3.1-3.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"libgraphite2-3-debuginfo-1.3.1-3.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"libgraphite2-3-32bit-1.3.1-3.1")) flag++; if (rpm_check(release:"SLES12", sp:"0", reference:"libgraphite2-3-debuginfo-32bit-1.3.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"cmis-client-debuginfo-0.5.0-5.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"cmis-client-debugsource-0.5.0-5.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"graphite2-debuginfo-1.3.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"graphite2-debugsource-1.3.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"hyphen-debugsource-2.8.8-9.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libabw-0_1-1-0.1.1-5.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libabw-0_1-1-debuginfo-0.1.1-5.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libabw-debugsource-0.1.1-5.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libcdr-0_1-1-0.1.1-5.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libcdr-0_1-1-debuginfo-0.1.1-5.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libcdr-debugsource-0.1.1-5.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libcmis-0_5-5-0.5.0-5.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libcmis-0_5-5-debuginfo-0.5.0-5.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libe-book-0_1-1-0.1.2-4.2")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libe-book-0_1-1-debuginfo-0.1.2-4.2")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libe-book-debugsource-0.1.2-4.2")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libetonyek-0_1-1-0.1.3-3.5")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libetonyek-0_1-1-debuginfo-0.1.3-3.5")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libetonyek-debugsource-0.1.3-3.5")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libfreehand-0_1-1-0.1.1-4.9")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libfreehand-0_1-1-debuginfo-0.1.1-4.9")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libfreehand-debugsource-0.1.1-4.9")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgltf-0_0-0-0.0.1-2.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgltf-0_0-0-debuginfo-0.0.1-2.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgltf-debugsource-0.0.1-2.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgraphite2-3-1.3.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgraphite2-3-32bit-1.3.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgraphite2-3-debuginfo-1.3.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgraphite2-3-debuginfo-32bit-1.3.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libhyphen0-2.8.8-9.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libhyphen0-debuginfo-2.8.8-9.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libixion-0_10-0-0.9.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libixion-0_10-0-debuginfo-0.9.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libixion-debugsource-0.9.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"liblangtag-debugsource-0.5.7-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"liblangtag1-0.5.7-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"liblangtag1-debuginfo-0.5.7-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libmspub-0_1-1-0.1.2-5.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libmspub-0_1-1-debuginfo-0.1.2-5.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libmspub-debugsource-0.1.2-5.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libmwaw-0_3-3-0.3.6-3.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libmwaw-0_3-3-debuginfo-0.3.6-3.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libmwaw-debugsource-0.3.6-3.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libodfgen-0_1-1-0.1.4-3.9")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libodfgen-0_1-1-debuginfo-0.1.4-3.9")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libodfgen-debugsource-0.1.4-3.9")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"liborcus-0_8-0-0.7.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"liborcus-0_8-0-debuginfo-0.7.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"liborcus-debugsource-0.7.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libpagemaker-0_0-0-0.0.2-2.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libpagemaker-0_0-0-debuginfo-0.0.2-2.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libpagemaker-debugsource-0.0.2-2.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-base-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-base-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-base-drivers-mysql-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-base-drivers-mysql-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-base-drivers-postgresql-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-base-drivers-postgresql-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-calc-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-calc-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-calc-extensions-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-debugsource-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-draw-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-draw-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-filters-optional-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-gnome-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-gnome-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-impress-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-impress-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-mailmerge-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-math-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-math-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-officebean-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-officebean-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-pyuno-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-pyuno-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-voikko-4.1-6.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-voikko-debuginfo-4.1-6.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-writer-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-writer-debuginfo-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libreoffice-writer-extensions-5.0.2.2-13.14")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"librevenge-0_0-0-0.0.2-4.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"librevenge-0_0-0-debuginfo-0.0.2-4.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"librevenge-debugsource-0.0.2-4.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"librevenge-stream-0_0-0-0.0.2-4.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"librevenge-stream-0_0-0-debuginfo-0.0.2-4.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libvisio-0_1-1-0.1.3-4.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libvisio-0_1-1-debuginfo-0.1.3-4.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libvisio-debugsource-0.1.3-4.3")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libvoikko-debugsource-3.7.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libvoikko1-3.7.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libvoikko1-debuginfo-3.7.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libwps-0_4-4-0.4.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libwps-0_4-4-debuginfo-0.4.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libwps-debugsource-0.4.1-3.1")) flag++; if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"myspell-dictionaries-20150827-5.1")) flag++; if (flag) { if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get()); else security_hole(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "Recommended update for LibreOffice"); }
NASL family Oracle Linux Local Security Checks NASL id ORACLELINUX_ELSA-2015-2619.NASL description From Red Hat Security Advisory 2015:2619 : Updated libreoffice packages that fixes multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. It was discovered that LibreOffice did not properly restrict automatic link updates. By tricking a victim into opening specially crafted documents, an attacker could possibly use this flaw to disclose contents of files accessible by the victim. (CVE-2015-4551) An integer underflow flaw leading to a heap-based buffer overflow when parsing PrinterSetup data was discovered. By tricking a user into opening a specially crafted document, an attacker could possibly exploit this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5212) An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way LibreOffice processed certain Microsoft Word .doc files. By tricking a user into opening a specially crafted Microsoft Word .doc document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5213) It was discovered that LibreOffice did not properly sanity check bookmark indexes. By tricking a user into opening a specially crafted document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5214) All libreoffice users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. last seen 2020-06-01 modified 2020-06-02 plugin id 87365 published 2015-12-15 reporter This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/87365 title Oracle Linux 6 / 7 : libreoffice (ELSA-2015-2619) code # # (C) Tenable Network Security, Inc. # # The descriptive text and package checks in this plugin were # extracted from Red Hat Security Advisory RHSA-2015:2619 and # Oracle Linux Security Advisory ELSA-2015-2619 respectively. # include("compat.inc"); if (description) { script_id(87365); script_version("2.6"); script_cvs_date("Date: 2019/09/27 13:00:36"); script_cve_id("CVE-2015-4551", "CVE-2015-5212", "CVE-2015-5213", "CVE-2015-5214"); script_xref(name:"RHSA", value:"2015:2619"); script_name(english:"Oracle Linux 6 / 7 : libreoffice (ELSA-2015-2619)"); script_summary(english:"Checks rpm output for the updated packages"); script_set_attribute( attribute:"synopsis", value:"The remote Oracle Linux host is missing one or more security updates." ); script_set_attribute( attribute:"description", value: "From Red Hat Security Advisory 2015:2619 : Updated libreoffice packages that fixes multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. It was discovered that LibreOffice did not properly restrict automatic link updates. By tricking a victim into opening specially crafted documents, an attacker could possibly use this flaw to disclose contents of files accessible by the victim. (CVE-2015-4551) An integer underflow flaw leading to a heap-based buffer overflow when parsing PrinterSetup data was discovered. By tricking a user into opening a specially crafted document, an attacker could possibly exploit this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5212) An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way LibreOffice processed certain Microsoft Word .doc files. By tricking a user into opening a specially crafted Microsoft Word .doc document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5213) It was discovered that LibreOffice did not properly sanity check bookmark indexes. By tricking a user into opening a specially crafted document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file. (CVE-2015-5214) All libreoffice users are advised to upgrade to these updated packages, which contain backported patches to correct these issues." ); script_set_attribute( attribute:"see_also", value:"https://oss.oracle.com/pipermail/el-errata/2015-December/005626.html" ); script_set_attribute( attribute:"see_also", value:"https://oss.oracle.com/pipermail/el-errata/2015-December/005629.html" ); script_set_attribute( attribute:"solution", value:"Update the affected libreoffice packages." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-fa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-is"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-lb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-mn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-pt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-vi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:autocorr-zh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-base"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-bsh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-calc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-core"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-draw"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-emailmerge"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-filters"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-gdb-debug-support"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-glade"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-graphicfilter"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-headless"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-impress"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-af"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ar"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-as"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-bg"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-bn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-br"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ca"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-cs"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-cy"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-da"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-de"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-dz"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-el"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-en"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-es"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-et"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-eu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-fa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-fi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-fr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ga"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-gl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-gu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-he"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-hi"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-hr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-hu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-it"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ja"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-kk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-kn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ko"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-lt"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-lv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-mai"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ml"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-mr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ms"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-nb"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-nl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-nn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-nr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-nso"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-or"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-pa"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-pl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-pt-BR"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-pt-PT"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ro"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ru"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-si"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-sk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-sl"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-sr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ss"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-st"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-sv"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ta"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-te"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-th"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-tn"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-tr"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-uk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ur"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-ve"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-xh"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-zh-Hans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-zh-Hant"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-langpack-zu"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-librelogo"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-math"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-nlpsolver"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-officebean"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-ogltrans"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-opensymbol-fonts"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-pdfimport"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-postgresql"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-pyuno"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-rhino"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-sdk"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-sdk-doc"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-ure"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-wiki-publisher"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-writer"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:libreoffice-xsltfilter"); script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:6"); script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:7"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/11/10"); script_set_attribute(attribute:"patch_publication_date", value:"2015/12/15"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/12/15"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Oracle Linux Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/OracleLinux", "Host/RedHat/release", "Host/RedHat/rpm-list"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("rpm.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (!get_kb_item("Host/OracleLinux")) audit(AUDIT_OS_NOT, "Oracle Linux"); release = get_kb_item("Host/RedHat/release"); if (isnull(release) || !pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux)", string:release)) audit(AUDIT_OS_NOT, "Oracle Linux"); os_ver = pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\.[0-9]+)?)", string:release); if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Oracle Linux"); os_ver = os_ver[1]; if (! preg(pattern:"^(6|7)([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Oracle Linux 6 / 7", "Oracle Linux " + os_ver); if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING); cpu = get_kb_item("Host/cpu"); if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH); if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Oracle Linux", cpu); flag = 0; if (rpm_check(release:"EL6", reference:"autocorr-af-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-bg-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-ca-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-cs-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-da-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-de-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-en-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-es-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-fa-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-fi-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-fr-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-ga-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-hr-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-hu-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-is-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-it-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-ja-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-ko-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-lb-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-lt-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-mn-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-nl-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-pl-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-pt-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-ro-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-ru-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-sk-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-sl-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-sr-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-sv-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-tr-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-vi-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"autocorr-zh-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-base-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-bsh-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-calc-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-core-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-draw-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-emailmerge-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-filters-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-gdb-debug-support-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-glade-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-graphicfilter-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-headless-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-impress-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-af-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ar-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-as-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-bg-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-bn-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ca-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-cs-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-cy-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-da-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-de-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-dz-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-el-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-en-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-es-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-et-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-eu-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-fi-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-fr-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ga-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-gl-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-gu-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-he-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-hi-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-hr-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-hu-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-it-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ja-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-kn-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ko-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-lt-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-mai-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ml-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-mr-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ms-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-nb-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-nl-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-nn-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-nr-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-nso-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-or-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-pa-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-pl-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-pt-BR-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-pt-PT-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ro-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ru-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-sk-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-sl-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-sr-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ss-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-st-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-sv-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ta-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-te-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-th-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-tn-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-tr-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ts-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-uk-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ur-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-ve-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-xh-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-zh-Hans-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-zh-Hant-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-langpack-zu-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-librelogo-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-math-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-nlpsolver-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-ogltrans-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-opensymbol-fonts-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-pdfimport-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-pyuno-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-rhino-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-sdk-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-sdk-doc-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-ure-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-wiki-publisher-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-writer-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL6", reference:"libreoffice-xsltfilter-4.2.8.2-11.0.1.el6_7.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-af-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-bg-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-ca-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-cs-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-da-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-de-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-en-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-es-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-fa-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-fi-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-fr-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-ga-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-hr-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-hu-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-is-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-it-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-ja-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-ko-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-lb-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-lt-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-mn-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-nl-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-pl-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-pt-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-ro-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-ru-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-sk-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-sl-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-sr-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-sv-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-tr-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-vi-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"autocorr-zh-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-base-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-bsh-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-calc-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-core-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-draw-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-emailmerge-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-filters-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-gdb-debug-support-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-glade-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-graphicfilter-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-headless-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-impress-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-af-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-ar-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-as-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-bg-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-bn-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-br-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-ca-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-cs-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-cy-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-da-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-de-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-dz-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-el-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-en-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-es-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-et-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-eu-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-fa-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-fi-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-fr-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-ga-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-gl-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-gu-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-he-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-hi-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-hr-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-hu-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-it-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-ja-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-kk-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-kn-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-ko-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-lt-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-lv-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-mai-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-ml-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-mr-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-nb-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-nl-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-nn-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-nr-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-nso-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-or-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-pa-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-pl-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-pt-BR-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-pt-PT-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-ro-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-ru-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-si-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-sk-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-sl-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-sr-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-ss-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-st-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-sv-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-ta-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-te-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-th-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-tn-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-tr-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-ts-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-uk-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-ve-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-xh-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-zh-Hans-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-zh-Hant-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-langpack-zu-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-librelogo-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-math-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-nlpsolver-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-officebean-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-ogltrans-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-opensymbol-fonts-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-pdfimport-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-postgresql-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-pyuno-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-rhino-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-sdk-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-sdk-doc-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-ure-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-wiki-publisher-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-writer-4.3.7.2-5.0.1.el7_2.1")) flag++; if (rpm_check(release:"EL7", cpu:"x86_64", reference:"libreoffice-xsltfilter-4.3.7.2-5.0.1.el7_2.1")) flag++; if (flag) { if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get()); else security_warning(0); exit(0); } else { tested = pkg_tests_get(); if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); else audit(AUDIT_PACKAGE_NOT_INSTALLED, "autocorr-af / autocorr-bg / autocorr-ca / autocorr-cs / autocorr-da / etc"); }
NASL family MacOS X Local Security Checks NASL id MACOSX_LIBREOFFICE_445.NASL description The version of LibreOffice installed on the remote Mac OS X host is prior to 4.4.5. It is, therefore, affected by the following vulnerabilities : - An information disclosure vulnerability exists due to the use of stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links. A remote attacker can exploit this, via a specially crafted ODF document, to to obtain sensitive information. (CVE-2015-4551) - An integer underflow condition exists in the ReadJobSetup() function due to improper validation of user-supplied input when handling printer settings. A remote attacker can exploit this, via specially crafted PrinterSetup data in an ODF document, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5212) - An integer underflow condition exists in the WW8ScannerBase::OpenPieceTable() function due to improper validation of user-supplied input when handling the PieceTable counter. A remote attacker can exploit this, via a specially crafted .DOC file, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5213) Note that Nessus has not attempted to exploit these issues but has instead relied only on the application last seen 2020-06-01 modified 2020-06-02 plugin id 86902 published 2015-11-17 reporter This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/86902 title LibreOffice < 4.4.5 Multiple Vulnerabilities (Mac OS X) code # # (C) Tenable Network Security, Inc. # include("compat.inc"); if (description) { script_id(86902); script_version("1.9"); script_cvs_date("Date: 2019/11/20"); script_cve_id("CVE-2015-4551", "CVE-2015-5212", "CVE-2015-5213"); script_name(english:"LibreOffice < 4.4.5 Multiple Vulnerabilities (Mac OS X)"); script_summary(english:"Checks the version of LibreOffice."); script_set_attribute(attribute:"synopsis", value: "The remote host has an application installed that is affected by multiple vulnerabilities."); script_set_attribute(attribute:"description", value: "The version of LibreOffice installed on the remote Mac OS X host is prior to 4.4.5. It is, therefore, affected by the following vulnerabilities : - An information disclosure vulnerability exists due to the use of stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links. A remote attacker can exploit this, via a specially crafted ODF document, to to obtain sensitive information. (CVE-2015-4551) - An integer underflow condition exists in the ReadJobSetup() function due to improper validation of user-supplied input when handling printer settings. A remote attacker can exploit this, via specially crafted PrinterSetup data in an ODF document, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5212) - An integer underflow condition exists in the WW8ScannerBase::OpenPieceTable() function due to improper validation of user-supplied input when handling the PieceTable counter. A remote attacker can exploit this, via a specially crafted .DOC file, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5213) Note that Nessus has not attempted to exploit these issues but has instead relied only on the application's self-reported version number."); # https://www.libreoffice.org/about-us/security/advisories/cve-2015-4551/ script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?cdf2c164"); # https://www.libreoffice.org/about-us/security/advisories/cve-2015-5212/ script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?8a5c0096"); # https://www.libreoffice.org/about-us/security/advisories/cve-2015-5213/ script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?1b2d335c"); script_set_attribute(attribute:"see_also", value:"http://listarchives.documentfoundation.org/www/announce/msg00241.html"); script_set_attribute(attribute:"solution", value: "Upgrade to LibreOffice version 4.4.5 (4.4.5.2) or later."); script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-5213"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"vuln_publication_date", value:"2015/11/05"); script_set_attribute(attribute:"patch_publication_date", value:"2015/07/30"); script_set_attribute(attribute:"plugin_publication_date", value:"2015/11/17"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/a:libreoffice:libreoffice"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_family(english:"MacOS X Local Security Checks"); script_copyright(english:"This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_dependencies("macosx_libreoffice_installed.nasl"); script_require_keys("installed_sw/LibreOffice", "Host/MacOSX/Version"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("misc_func.inc"); include("install_func.inc"); app_name = "LibreOffice"; get_kb_item_or_exit("Host/MacOSX/Version"); install = get_single_install(app_name:app_name, exit_if_unknown_ver:TRUE); version = install['version']; path = install['path']; if ( # < 4.x version =~ "^[0-3]($|[^0-9])" || # 4.x < 4.4.5 version =~ "^(4\.[0-3]|4\.4\.[0-4])($|[^0-9])" ) { if (report_verbosity > 0) { report = '\n Path : ' + path + '\n Installed version : ' + version + '\n Fixed version : 4.4.5 (4.4.5.2)' + '\n'; security_warning(port:0, extra:report); } else security_warning(0); } else audit(AUDIT_INST_PATH_NOT_VULN, app_name, version, path);
NASL family Debian Local Security Checks NASL id DEBIAN_DSA-3394.NASL description Multiple vulnerabilities have been discovered in LibreOffice, a full-featured office productivity : - CVE-2015-4551 Federico Scrinzi discovered an information leak in the handling of ODF documents. Quoting from: The LinkUpdateMode feature controls whether documents inserted into Writer or Calc via links will either not get updated, or prompt to update, or automatically update, when the parent document is loaded. The configuration of this option was stored in the document. That flawed approach enabled documents to be crafted with links to plausible targets on the victims host computer. The contents of those automatically inserted after load links can be concealed in hidden sections and retrieved by the attacker if the document is saved and returned to sender, or via http requests if the user has selected lower security settings for that document. - CVE-2015-5212 A buffer overflow in parsing the printer setup information in ODF documents may result in the execution of arbitrary code. - CVE-2015-5213 / CVE-2015-5214 A buffer overflow and an integer overflow in parsing Microsoft Word documents may result in the execution of arbitrary code. last seen 2020-06-01 modified 2020-06-02 plugin id 86772 published 2015-11-06 reporter This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/86772 title Debian DSA-3394-1 : libreoffice - security update NASL family SuSE Local Security Checks NASL id SUSE_SU-2016-0324-1.NASL description This update brings LibreOffice to version 5.0.4, a major version update. It brings lots of new features, bug fixes and also security fixes. Features as seen on http://www.libreoffice.org/discover/new-features/ - LibreOffice 5.0 ships an impressive number of new features for its spreadsheet module, Calc: complex formulae image cropping, new functions, more powerful conditional formatting, table addressing and much more. Calc last seen 2020-06-01 modified 2020-06-02 plugin id 88575 published 2016-02-04 reporter This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/88575 title SUSE SLED11 Security Update : Recommended update for LibreOffice (SUSE-SU-2016:0324-1) NASL family SuSE Local Security Checks NASL id OPENSUSE-2016-273.NASL description This update for LibreOffice and some library dependencies (cmis-client, libetonyek, libmwaw, libodfgen, libpagemaker, libreoffice-share-linker, mdds, libwps) fixes the following issues : Changes in libreoffice : - Provide l10n-pt from pt-PT - boo#945047 - LO-L3: LO is duplicating master pages, extended fix - boo#951579 - LO-L3: [LibreOffice] Calc 5.0 fails to open ods files - deleted RPATH prevented loading of bundled 3rd party RDF handler libs - Version update to 5.0.4.2 : - Final of the 5.0.4 series - boo#945047 - LO-L3: LO is duplicating master pages - Version update to 5.0.4.1 : - rc1 of 5.0.4 with various regression fixes - boo#954345 - LO-L3: Insert-->Image-->Insert as Link hangs writer - Version update to 5.0.3.2 : - Final tag of 5.0.3 release - Fix boo#939996 - LO-L3: Some bits from DOCX file are not imported - Fix boo#889755 - LO-L3: PPTX: chart axis number format incorrect - boo#679938 - LO-L3: saving to doc file the chapter name in the header does not change with chapters - Version update to 5.0.3RC1 as it should fix i586 test failure - Update text2number extension to 1.5.0 - obsolete libreoffice-mono - pentaho-flow-reporting require is conditional on system_libs - Update icon theme dependencies - https://lists.debian.org/debian-openoffice/2015/09/msg00343.html - Version bump to 5.0.2 final fate#318856 fate#319071 boo#943075 boo#945692 : - Small tweaks compared to rc1 - For sake of completion this release also contains security fixes for boo#910806 CVE-2014-8147, boo#907636 CVE-2014-9093, boo#934423 CVE-2015-4551, boo#910805 CVE-2014-8146, boo#940838 CVE-2015-5214, boo#936190 CVE-2015-5213, boo#936188 CVE-2015-5212, boo#934423 CVE-2015-45513, boo#934423 CVE-2015-4551, boo#910805 CVE-2014-8146, boo#940838 CVE-2015-5214, boo#936190 CVE-2015-5213, boo#936188 CVE-2015-5212, boo#934423 CVE-2015-45513, boo#934423 CVE-2015-4551, boo#910805 CVE-2014-8146, boo#940838 CVE-2015-5214, boo#936190 CVE-2015-5213, boo#936188 CVE-2015-5212, boo#934423 CVE-2015-4551 - Use gcc48 to build on sle11sp4 - Make debuginfo last seen 2020-06-05 modified 2016-02-29 plugin id 89016 published 2016-02-29 reporter This script is Copyright (C) 2016-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/89016 title openSUSE Security Update : LibreOffice and related libraries (openSUSE-2016-273) NASL family FreeBSD Local Security Checks NASL id FREEBSD_PKG_72F71E264F6911E6AC37AC9E174BE3AF.NASL description The Apache OpenOffice Project reports : An OpenDocument Presentation .ODP or Presentation Template .OTP file can contain invalid presentation elements that lead to memory corruption when the document is loaded in Apache OpenOffice Impress. The defect may cause the document to appear as corrupted and OpenOffice may crash in a recovery-stuck mode requiring manual intervention. A crafted exploitation of the defect can allow an attacker to cause denial of service (memory corruption and application crash) and possible execution of arbitrary code. last seen 2020-06-01 modified 2020-06-02 plugin id 92504 published 2016-07-22 reporter This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/92504 title FreeBSD : Apache OpenOffice 4.1.2 -- Memory Corruption Vulnerability (Impress Presentations) (72f71e26-4f69-11e6-ac37-ac9e174be3af) NASL family Windows NASL id OPENOFFICE_412.NASL description The version of Apache OpenOffice installed on the remote host is a version prior to 4.1.2. It is, therefore, affected by the following vulnerabilities : - An overflow condition exists in the Hangul Word Processor (HWP) filter due to improper validation of user-supplied input. A remote attacker can exploit this, via a specially crafted HWP document, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-1774) - An information disclosure vulnerability exists due to the use of stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links. A remote attacker can exploit this, via a specially crafted ODF document, to to obtain sensitive information. (CVE-2015-4551) - An integer underflow condition exists in the ReadJobSetup() function due to improper validation of user-supplied input when handling printer settings. A remote attacker can exploit this, via specially crafted PrinterSetup data in an ODF document, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5212) - An integer underflow condition exists in the WW8ScannerBase::OpenPieceTable() function due to improper validation of user-supplied input when handling the PieceTable counter. A remote attacker can exploit this, via a specially crafted .DOC file, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5213) - A memory corruption issue exists in last seen 2020-06-01 modified 2020-06-02 plugin id 86904 published 2015-11-17 reporter This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/86904 title Apache OpenOffice < 4.1.2 Multiple Vulnerabilities NASL family Ubuntu Local Security Checks NASL id UBUNTU_USN-2793-1.NASL description Federico Scrinzi discovered that LibreOffice incorrectly handled documents inserted into Writer or Calc via links. If a user were tricked into opening a specially crafted document, a remote attacker could possibly obtain the contents of arbitrary files. (CVE-2015-4551) It was discovered that LibreOffice incorrectly handled PrinterSetup data stored in ODF files. If a user were tricked into opening a specially crafted ODF document, a remote attacker could cause LibreOffice to crash, and possibly execute arbitrary code. (CVE-2015-5212) It was discovered that LibreOffice incorrectly handled the number of pieces in DOC files. If a user were tricked into opening a specially crafted DOC document, a remote attacker could cause LibreOffice to crash, and possibly execute arbitrary code. (CVE-2015-5213) It was discovered that LibreOffice incorrectly handled bookmarks in DOC files. If a user were tricked into opening a specially crafted DOC document, a remote attacker could cause LibreOffice to crash, and possibly execute arbitrary code. (CVE-2015-5214). Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. last seen 2020-06-01 modified 2020-06-02 plugin id 86784 published 2015-11-06 reporter Ubuntu Security Notice (C) 2015-2019 Canonical, Inc. / NASL script (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/86784 title Ubuntu 12.04 LTS / 14.04 LTS / 15.04 : libreoffice vulnerabilities (USN-2793-1)
Redhat
advisories |
| ||||
rpms |
|
References
- http://www.debian.org/security/2015/dsa-3394
- http://www.ubuntu.com/usn/USN-2793-1
- http://www.openoffice.org/security/cves/CVE-2015-4551.html
- http://www.securitytracker.com/id/1034091
- http://www.libreoffice.org/about-us/security/advisories/cve-2015-4551/
- http://www.securitytracker.com/id/1034085
- http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
- http://www.securityfocus.com/bid/77486
- https://security.gentoo.org/glsa/201603-05
- http://rhn.redhat.com/errata/RHSA-2015-2619.html
- https://security.gentoo.org/glsa/201611-03