ID CVE-2015-1774
Summary The HWP filter in LibreOffice before 4.3.7 and 4.4.x before 4.4.2 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP document, which triggers an out-of-bounds write.
References
Vulnerable Configurations
  • Canonical Ubuntu Linux 14.04 LTS (Long-Term Support)
    cpe:2.3:o:canonical:ubuntu_linux:14.04:-:-:-:lts
  • Canonical Ubuntu Linux 14.10
    cpe:2.3:o:canonical:ubuntu_linux:14.10
  • Canonical Ubuntu Linux 12.04 LTS
    cpe:2.3:o:canonical:ubuntu_linux:12.04:-:-:-:lts
  • Debian Linux 8.0 (Jessie)
    cpe:2.3:o:debian:debian_linux:8.0
  • Debian Linux 7.0
    cpe:2.3:o:debian:debian_linux:7.0
  • Apache Software Foundation OpenOffice 4.1.1
    cpe:2.3:a:apache:openoffice:4.1.1
  • Fedora 21
    cpe:2.3:o:fedoraproject:fedora:21
  • Red Hat Enterprise Linux Workstation 6.0
    cpe:2.3:o:redhat:enterprise_linux_workstation:6.0
  • Red Hat Enterprise Linux Server 6.0
    cpe:2.3:o:redhat:enterprise_linux_server:6.0
  • Red Hat Enterprise Linux Desktop 6.0
    cpe:2.3:o:redhat:enterprise_linux_desktop:6.0
  • LibreOffice 4.3.6
    cpe:2.3:a:libreoffice:libreoffice:4.3.6
  • LibreOffice 4.4.0
    cpe:2.3:a:libreoffice:libreoffice:4.4.0
  • LibreOffice 4.4.1
    cpe:2.3:a:libreoffice:libreoffice:4.4.1
CVSS
Base: 6.8 (as of 29-06-2016 - 09:54)
Impact:
Exploitability:
CWE CWE-119
CAPEC
  • Buffer Overflow via Environment Variables
    This attack pattern involves causing a buffer overflow through manipulation of environment variables. Once the attacker finds that they can modify an environment variable, they may try to overflow associated buffers. This attack leverages implicit trust often placed in environment variables.
  • Overflow Buffers
    Buffer Overflow attacks target improper or missing bounds checking on buffer operations, typically triggered by input injected by an attacker. As a consequence, an attacker is able to write past the boundaries of allocated buffer regions in memory, causing a program crash or potentially redirection of execution as per the attackers' choice.
  • Client-side Injection-induced Buffer Overflow
    This type of attack exploits a buffer overflow vulnerability in targeted client software through injection of malicious content from a custom-built hostile service.
  • Filter Failure through Buffer Overflow
    In this attack, the idea is to cause an active filter to fail by causing an oversized transaction. An attacker may try to feed overly long input strings to the program in an attempt to overwhelm the filter (by causing a buffer overflow) and hoping that the filter does not fail securely (i.e. the user input is let into the system unfiltered).
  • MIME Conversion
    An attacker exploits a weakness in the MIME conversion routine to cause a buffer overflow and gain control over the mail server machine. The MIME system is designed to allow various different information formats to be interpreted and sent via e-mail. Attack points exist when data are converted to MIME compatible format and back.
  • Overflow Binary Resource File
    An attack of this type exploits a buffer overflow vulnerability in the handling of binary resources. Binary resources may include music files like MP3, image files like JPEG files, and any other binary file. These attacks may pass unnoticed to the client machine through normal usage of files, such as a browser loading a seemingly innocent JPEG file. This can allow the attacker access to the execution stack and execute arbitrary code in the target process. This attack pattern is a variant of standard buffer overflow attacks using an unexpected vector (binary files) to wrap its attack and open up a new attack vector. The attacker is required to either directly serve the binary content to the victim, or place it in a locale like a MP3 sharing application, for the victim to download. The attacker then is notified upon the download or otherwise locates the vulnerability opened up by the buffer overflow.
  • Buffer Overflow via Symbolic Links
    This type of attack leverages the use of symbolic links to cause buffer overflows. An attacker can try to create or manipulate a symbolic link file such that its contents result in out of bounds data. When the target software processes the symbolic link file, it could potentially overflow internal buffers with insufficient bounds checking.
  • Overflow Variables and Tags
    This type of attack leverages the use of tags or variables from a formatted configuration data to cause buffer overflow. The attacker crafts a malicious HTML page or configuration file that includes oversized strings, thus causing an overflow.
  • Buffer Overflow via Parameter Expansion
    In this attack, the target software is given input that the attacker knows will be modified and expanded in size during processing. This attack relies on the target software failing to anticipate that the expanded data may exceed some internal limit, thereby creating a buffer overflow.
  • Buffer Overflow in an API Call
    This attack targets libraries or shared code modules which are vulnerable to buffer overflow attacks. An attacker who has access to an API may try to embed malicious code in the API function call and exploit a buffer overflow vulnerability in the function's implementation. All clients that make use of the code library thus become vulnerable by association. This has a very broad effect on security across a system, usually affecting more than one software process.
  • Buffer Overflow in Local Command-Line Utilities
    This attack targets command-line utilities available in a number of shells. An attacker can leverage a vulnerability found in a command-line utility to escalate privilege to root.
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
nessus via4
  • NASL family Scientific Linux Local Security Checks
    NASL id SL_20150722_LIBREOFFICE_ON_SL6_X.NASL
    description A flaw was found in the way the LibreOffice HWP (Hangul Word Processor) file filter processed certain HWP documents. An attacker able to trick a user into opening a specially crafted HWP document could possibly use this flaw to execute arbitrary code with the privileges of the user opening that document. (CVE-2015-1774) The libreoffice packages have been upgraded to upstream version 4.2.8.2, which provides a number of bug fixes and enhancements over the previous version, including : - OpenXML interoperability has been improved. - This update adds additional statistics functions to the Calc application, thus improving interoperability with Microsoft Excel and its 'Analysis ToolPak' add-in. - Various performance improvements have been implemented in Calc. - This update adds new import filters for importing files from the Appple Keynote and Abiword applications. - The export filter for the MathML markup language has been improved. - This update adds a new start screen that includes thumbnails of recently opened documents. - A visual clue is now displayed in the Slide Sorter window for slides with transitions or animations. - This update improves trend lines in charts. - LibreOffice now supports BCP 47 language tags.
    last seen 2019-02-21
    modified 2018-12-28
    plugin id 85199
    published 2015-08-04
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=85199
    title Scientific Linux Security Update : libreoffice on SL6.x i386/x86_64
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-3236.NASL
    description It was discovered that missing input sanitising in Libreoffice's filter for HWP documents may result in the execution of arbitrary code if a malformed document is opened.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 83064
    published 2015-04-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83064
    title Debian DSA-3236-1 : libreoffice - security update
  • NASL family Oracle Linux Local Security Checks
    NASL id ORACLELINUX_ELSA-2015-1458.NASL
    description From Red Hat Security Advisory 2015:1458 : Updated libreoffice packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. A flaw was found in the way the LibreOffice HWP (Hangul Word Processor) file filter processed certain HWP documents. An attacker able to trick a user into opening a specially crafted HWP document could possibly use this flaw to execute arbitrary code with the privileges of the user opening that document. (CVE-2015-1774) The libreoffice packages have been upgraded to upstream version 4.2.8.2, which provides a number of bug fixes and enhancements over the previous version, including : * OpenXML interoperability has been improved. * This update adds additional statistics functions to the Calc application, thus improving interoperability with Microsoft Excel and its 'Analysis ToolPak' add-in. * Various performance improvements have been implemented in Calc. * This update adds new import filters for importing files from the Appple Keynote and Abiword applications. * The export filter for the MathML markup language has been improved. * This update adds a new start screen that includes thumbnails of recently opened documents. * A visual clue is now displayed in the Slide Sorter window for slides with transitions or animations. * This update improves trend lines in charts. * LibreOffice now supports BCP 47 language tags. For a complete list of bug fixes and enhancements provided by this rebase, see the libreoffice change log linked from the References section. (BZ#1150048) Users of libreoffice are advised to upgrade to these updated packages, which correct these issues and add these enhancements.
    last seen 2019-02-21
    modified 2018-07-18
    plugin id 85110
    published 2015-07-30
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=85110
    title Oracle Linux 6 : libreoffice (ELSA-2015-1458)
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-2578-1.NASL
    description Alexander Cherepanov discovered that LibreOffice incorrectly handled certain RTF files. If a user were tricked into opening a specially crafted RTF document, a remote attacker could cause LibreOffice to crash, and possibly execute arbitrary code. (CVE-2014-9093) It was discovered that LibreOffice incorrectly handled certain HWP files. If a user were tricked into opening a specially crafted HWP document, a remote attacker could cause LibreOffice to crash, and possibly execute arbitrary code. (CVE-2015-1774). Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-12-01
    plugin id 83110
    published 2015-04-28
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83110
    title Ubuntu 12.04 LTS / 14.04 LTS / 14.10 : libreoffice vulnerabilities (USN-2578-1)
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-201603-05.NASL
    description The remote host is affected by the vulnerability described in GLSA-201603-05 (LibreOffice, OpenOffice: Multiple vulnerabilities) Multiple vulnerabilities were found in both LibreOffice and OpenOffice that allow the remote execution of arbitrary code and potential Denial of Service. These vulnerabilities may be exploited through multiple vectors including crafted documents, link handling, printer setup in ODF document types, DOC file formats, and Calc spreadsheets. Please review the referenced CVE’s for specific information regarding each. Impact : A remote attacker could entice a user to open a specially crafted file using the LibreOffice or OpenOffice suite of software. Execution of these attacks could possibly result in the execution of arbitrary code with the privileges of the process or a Denial of Service condition. Workaround : There is no known work around at this time.
    last seen 2019-02-21
    modified 2016-03-10
    plugin id 89811
    published 2016-03-10
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=89811
    title GLSA-201603-05 : LibreOffice, OpenOffice: Multiple vulnerabilities
  • NASL family Red Hat Local Security Checks
    NASL id REDHAT-RHSA-2015-1458.NASL
    description Updated libreoffice packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. A flaw was found in the way the LibreOffice HWP (Hangul Word Processor) file filter processed certain HWP documents. An attacker able to trick a user into opening a specially crafted HWP document could possibly use this flaw to execute arbitrary code with the privileges of the user opening that document. (CVE-2015-1774) The libreoffice packages have been upgraded to upstream version 4.2.8.2, which provides a number of bug fixes and enhancements over the previous version, including : * OpenXML interoperability has been improved. * This update adds additional statistics functions to the Calc application, thus improving interoperability with Microsoft Excel and its 'Analysis ToolPak' add-in. * Various performance improvements have been implemented in Calc. * This update adds new import filters for importing files from the Appple Keynote and Abiword applications. * The export filter for the MathML markup language has been improved. * This update adds a new start screen that includes thumbnails of recently opened documents. * A visual clue is now displayed in the Slide Sorter window for slides with transitions or animations. * This update improves trend lines in charts. * LibreOffice now supports BCP 47 language tags. For a complete list of bug fixes and enhancements provided by this rebase, see the libreoffice change log linked from the References section. (BZ#1150048) Users of libreoffice are advised to upgrade to these updated packages, which correct these issues and add these enhancements.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 84950
    published 2015-07-23
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=84950
    title RHEL 6 : libreoffice (RHSA-2015:1458)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-7213.NASL
    description CVE-2015-1774: out-of-bounds write in HWP file filter Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-19
    plugin id 83325
    published 2015-05-11
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83325
    title Fedora 20 : libreoffice-4.2.8.2-8.fc20 (2015-7213)
  • NASL family SuSE Local Security Checks
    NASL id OPENSUSE-2015-357.NASL
    description LibreOffice was updated to 4.3.7 to fix one security issue and a number of bugs. The following vulnerability was fixed : - CVE-2015-1774: Specially crafted HWP documents could have led to an application crash or possibly the execution of arbitrary code (boo#919409) The following non-security bugs were fixed : - boo#881214: Failed to launch reprots wizard in libreoffice-base with error 'java.lang.NoClassDefFoundError' In addition this update contains all upstream fixes of the 4.3.7 series.
    last seen 2019-02-21
    modified 2015-05-13
    plugin id 83396
    published 2015-05-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83396
    title openSUSE Security Update : libreoffice (openSUSE-2015-357)
  • NASL family CentOS Local Security Checks
    NASL id CENTOS_RHSA-2015-1458.NASL
    description Updated libreoffice packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. A flaw was found in the way the LibreOffice HWP (Hangul Word Processor) file filter processed certain HWP documents. An attacker able to trick a user into opening a specially crafted HWP document could possibly use this flaw to execute arbitrary code with the privileges of the user opening that document. (CVE-2015-1774) The libreoffice packages have been upgraded to upstream version 4.2.8.2, which provides a number of bug fixes and enhancements over the previous version, including : * OpenXML interoperability has been improved. * This update adds additional statistics functions to the Calc application, thus improving interoperability with Microsoft Excel and its 'Analysis ToolPak' add-in. * Various performance improvements have been implemented in Calc. * This update adds new import filters for importing files from the Appple Keynote and Abiword applications. * The export filter for the MathML markup language has been improved. * This update adds a new start screen that includes thumbnails of recently opened documents. * A visual clue is now displayed in the Slide Sorter window for slides with transitions or animations. * This update improves trend lines in charts. * LibreOffice now supports BCP 47 language tags. For a complete list of bug fixes and enhancements provided by this rebase, see the libreoffice change log linked from the References section. (BZ#1150048) Users of libreoffice are advised to upgrade to these updated packages, which correct these issues and add these enhancements.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 85024
    published 2015-07-28
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=85024
    title CentOS 6 : libreoffice (CESA-2015:1458)
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_PKG_B13AF778F4FC11E4A95DAC9E174BE3AF.NASL
    description US-CERT/NIST reports : The HWP filter in LibreOffice before 4.3.7 and 4.4.x before 4.4.2 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP document, which triggers an out-of-bounds write.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 83281
    published 2015-05-08
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83281
    title FreeBSD : Vulnerability in HWP document filter (b13af778-f4fc-11e4-a95d-ac9e174be3af)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_SU-2015-1915-1.NASL
    description This update brings LibreOffice to version 5.0.2, a major version update. It brings lots of new features, bugfixes and also security fixes. Features as seen on http://www.libreoffice.org/discover/new-features/ - LibreOffice 5.0 ships an impressive number of new features for its spreadsheet module, Calc: complex formulae image cropping, new functions, more powerful conditional formatting, table addressing and much more. Calc's blend of performance and features makes it an enterprise-ready, heavy duty spreadsheet application capable of handling all kinds of workload for an impressive range of use cases - New icons, major improvements to menus and sidebar : no other LibreOffice version has looked that good and helped you be creative and get things done the right way. In addition, style management is now more intuitive thanks to the visualization of styles right in the interface. - LibreOffice 5 ships with numerous improvements to document import and export filters for MS Office, PDF, RTF, and more. You can now timestamp PDF documents generated with LibreOffice and enjoy enhanced document conversion fidelity all around. The Pentaho Flow Reporting Engine is now added and used. Security issues fixed : - CVE-2014-8146: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 did not properly track directionally isolated pieces of text, which allowed remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via crafted text. - CVE-2014-8147: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 used an integer data type that is inconsistent with a header file, which allowed remote attackers to cause a denial of service (incorrect malloc followed by invalid free) or possibly execute arbitrary code via crafted text. - CVE-2015-4551: An arbitrary file disclosure vulnerability in Libreoffice and Openoffice Calc and Writer was fixed. - CVE-2015-1774: The HWP filter in LibreOffice allowed remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP document, which triggered an out-of-bounds write. - CVE-2015-5212: A LibreOffice 'PrinterSetup Length' integer underflow vulnerability could be used by attackers supplying documents to execute code as the user opening the document. - CVE-2015-5213: A LibreOffice 'Piece Table Counter' invalid check design error vulnerability allowed attackers supplying documents to execute code as the user opening the document. - CVE-2015-5214: Multiple Vendor LibreOffice Bookmark Status Memory Corruption Vulnerability allowed attackers supplying documents to execute code as the user opening the document. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-29
    plugin id 86757
    published 2015-11-05
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=86757
    title SUSE SLED12 / SLES12 Security Update : Recommended update for LibreOffice (SUSE-SU-2015:1915-1)
  • NASL family Windows
    NASL id OPENOFFICE_412.NASL
    description The version of Apache OpenOffice installed on the remote host is a version prior to 4.1.2. It is, therefore, affected by the following vulnerabilities : - An overflow condition exists in the Hangul Word Processor (HWP) filter due to improper validation of user-supplied input. A remote attacker can exploit this, via a specially crafted HWP document, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-1774) - An information disclosure vulnerability exists due to the use of stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links. A remote attacker can exploit this, via a specially crafted ODF document, to to obtain sensitive information. (CVE-2015-4551) - An integer underflow condition exists in the ReadJobSetup() function due to improper validation of user-supplied input when handling printer settings. A remote attacker can exploit this, via specially crafted PrinterSetup data in an ODF document, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5212) - An integer underflow condition exists in the WW8ScannerBase::OpenPieceTable() function due to improper validation of user-supplied input when handling the PieceTable counter. A remote attacker can exploit this, via a specially crafted .DOC file, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5213) - A memory corruption issue exists in 'filter/ww8/ww8scan.cxx' due to improper validation of user-supplied input when handling bookmark status positions. A remote attacker can exploit this, via a specially crafted document, to cause a denial of service condition or the execution of arbitrary code. (CVE-2015-5214)
    last seen 2019-02-21
    modified 2018-07-16
    plugin id 86904
    published 2015-11-17
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=86904
    title Apache OpenOffice < 4.1.2 Multiple Vulnerabilities
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-7022.NASL
    description Fix some .docx import crashes. And finally fix the re-render of checked->unchecked checkbox transition update to 4.3.7 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-19
    plugin id 83154
    published 2015-04-30
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83154
    title Fedora 21 : libreoffice-4.3.7.2-3.fc21 (2015-7022)
redhat via4
advisories
bugzilla
id 1216042
title CVE-2015-1774 libreoffice: HWP file filter vulnerability
oval
AND
  • OR
    • comment Red Hat Enterprise Linux 6 Client is installed
      oval oval:com.redhat.rhsa:tst:20100842001
    • comment Red Hat Enterprise Linux 6 Server is installed
      oval oval:com.redhat.rhsa:tst:20100842002
    • comment Red Hat Enterprise Linux 6 Workstation is installed
      oval oval:com.redhat.rhsa:tst:20100842003
    • comment Red Hat Enterprise Linux 6 ComputeNode is installed
      oval oval:com.redhat.rhsa:tst:20100842004
  • OR
    • AND
      • comment autocorr-af is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458203
      • comment autocorr-af is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183108
    • AND
      • comment autocorr-bg is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458227
      • comment autocorr-bg is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183146
    • AND
      • comment autocorr-ca is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458195
      • comment autocorr-ca is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20150377128
    • AND
      • comment autocorr-cs is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458193
      • comment autocorr-cs is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183076
    • AND
      • comment autocorr-da is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458223
      • comment autocorr-da is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183092
    • AND
      • comment autocorr-de is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458187
      • comment autocorr-de is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183102
    • AND
      • comment autocorr-en is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458229
      • comment autocorr-en is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183060
    • AND
      • comment autocorr-es is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458245
      • comment autocorr-es is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183206
    • AND
      • comment autocorr-fa is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458241
      • comment autocorr-fa is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183248
    • AND
      • comment autocorr-fi is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458199
      • comment autocorr-fi is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183174
    • AND
      • comment autocorr-fr is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458235
      • comment autocorr-fr is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183220
    • AND
      • comment autocorr-ga is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458243
      • comment autocorr-ga is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183088
    • AND
      • comment autocorr-hr is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458233
      • comment autocorr-hr is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135098
    • AND
      • comment autocorr-hu is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458221
      • comment autocorr-hu is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183142
    • AND
      • comment autocorr-is is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458249
      • comment autocorr-is is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20150377070
    • AND
      • comment autocorr-it is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458239
      • comment autocorr-it is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183118
    • AND
      • comment autocorr-ja is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458215
      • comment autocorr-ja is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183224
    • AND
      • comment autocorr-ko is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458205
      • comment autocorr-ko is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183086
    • AND
      • comment autocorr-lb is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458201
      • comment autocorr-lb is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183252
    • AND
      • comment autocorr-lt is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458213
      • comment autocorr-lt is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183008
    • AND
      • comment autocorr-mn is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458207
      • comment autocorr-mn is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183110
    • AND
      • comment autocorr-nl is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458247
      • comment autocorr-nl is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183094
    • AND
      • comment autocorr-pl is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458189
      • comment autocorr-pl is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183130
    • AND
      • comment autocorr-pt is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458253
      • comment autocorr-pt is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183244
    • AND
      • comment autocorr-ro is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458191
      • comment autocorr-ro is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20150377316
    • AND
      • comment autocorr-ru is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458225
      • comment autocorr-ru is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183212
    • AND
      • comment autocorr-sk is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458251
      • comment autocorr-sk is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183042
    • AND
      • comment autocorr-sl is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458209
      • comment autocorr-sl is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183116
    • AND
      • comment autocorr-sr is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458237
      • comment autocorr-sr is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135230
    • AND
      • comment autocorr-sv is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458211
      • comment autocorr-sv is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183018
    • AND
      • comment autocorr-tr is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458217
      • comment autocorr-tr is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183104
    • AND
      • comment autocorr-vi is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458197
      • comment autocorr-vi is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183182
    • AND
      • comment autocorr-zh is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458231
      • comment autocorr-zh is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20110183090
    • AND
      • comment libreoffice is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458065
      • comment libreoffice is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135006
    • AND
      • comment libreoffice-base is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458093
      • comment libreoffice-base is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135194
    • AND
      • comment libreoffice-bsh is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458023
      • comment libreoffice-bsh is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135216
    • AND
      • comment libreoffice-calc is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458039
      • comment libreoffice-calc is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135122
    • AND
      • comment libreoffice-core is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458111
      • comment libreoffice-core is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135250
    • AND
      • comment libreoffice-draw is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458091
      • comment libreoffice-draw is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135214
    • AND
      • comment libreoffice-emailmerge is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458115
      • comment libreoffice-emailmerge is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135094
    • AND
      • comment libreoffice-filters is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458119
      • comment libreoffice-filters is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20150377264
    • AND
      • comment libreoffice-gdb-debug-support is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458181
      • comment libreoffice-gdb-debug-support is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135220
    • AND
      • comment libreoffice-glade is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458041
      • comment libreoffice-glade is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20150377260
    • AND
      • comment libreoffice-graphicfilter is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458117
      • comment libreoffice-graphicfilter is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135232
    • AND
      • comment libreoffice-headless is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458149
      • comment libreoffice-headless is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135056
    • AND
      • comment libreoffice-impress is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458159
      • comment libreoffice-impress is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135044
    • AND
      • comment libreoffice-langpack-af is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458143
      • comment libreoffice-langpack-af is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135018
    • AND
      • comment libreoffice-langpack-ar is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458081
      • comment libreoffice-langpack-ar is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135138
    • AND
      • comment libreoffice-langpack-as is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458131
      • comment libreoffice-langpack-as is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135026
    • AND
      • comment libreoffice-langpack-bg is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458133
      • comment libreoffice-langpack-bg is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135178
    • AND
      • comment libreoffice-langpack-bn is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458185
      • comment libreoffice-langpack-bn is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135180
    • AND
      • comment libreoffice-langpack-ca is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458037
      • comment libreoffice-langpack-ca is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135166
    • AND
      • comment libreoffice-langpack-cs is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458055
      • comment libreoffice-langpack-cs is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135086
    • AND
      • comment libreoffice-langpack-cy is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458171
      • comment libreoffice-langpack-cy is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135114
    • AND
      • comment libreoffice-langpack-da is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458129
      • comment libreoffice-langpack-da is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135218
    • AND
      • comment libreoffice-langpack-de is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458183
      • comment libreoffice-langpack-de is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135244
    • AND
      • comment libreoffice-langpack-dz is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458011
      • comment libreoffice-langpack-dz is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135058
    • AND
      • comment libreoffice-langpack-el is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458073
      • comment libreoffice-langpack-el is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135212
    • AND
      • comment libreoffice-langpack-en is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458153
      • comment libreoffice-langpack-en is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135034
    • AND
      • comment libreoffice-langpack-es is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458025
      • comment libreoffice-langpack-es is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135202
    • AND
      • comment libreoffice-langpack-et is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458097
      • comment libreoffice-langpack-et is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135108
    • AND
      • comment libreoffice-langpack-eu is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458051
      • comment libreoffice-langpack-eu is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135226
    • AND
      • comment libreoffice-langpack-fi is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458145
      • comment libreoffice-langpack-fi is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135158
    • AND
      • comment libreoffice-langpack-fr is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458095
      • comment libreoffice-langpack-fr is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135092
    • AND
      • comment libreoffice-langpack-ga is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458021
      • comment libreoffice-langpack-ga is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135150
    • AND
      • comment libreoffice-langpack-gl is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458163
      • comment libreoffice-langpack-gl is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135192
    • AND
      • comment libreoffice-langpack-gu is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458005
      • comment libreoffice-langpack-gu is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135062
    • AND
      • comment libreoffice-langpack-he is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458169
      • comment libreoffice-langpack-he is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135024
    • AND
      • comment libreoffice-langpack-hi is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458167
      • comment libreoffice-langpack-hi is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135036
    • AND
      • comment libreoffice-langpack-hr is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458075
      • comment libreoffice-langpack-hr is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135116
    • AND
      • comment libreoffice-langpack-hu is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458109
      • comment libreoffice-langpack-hu is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135060
    • AND
      • comment libreoffice-langpack-it is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458027
      • comment libreoffice-langpack-it is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135184
    • AND
      • comment libreoffice-langpack-ja is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458061
      • comment libreoffice-langpack-ja is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135012
    • AND
      • comment libreoffice-langpack-kn is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458009
      • comment libreoffice-langpack-kn is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135088
    • AND
      • comment libreoffice-langpack-ko is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458127
      • comment libreoffice-langpack-ko is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135032
    • AND
      • comment libreoffice-langpack-lt is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458043
      • comment libreoffice-langpack-lt is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135172
    • AND
      • comment libreoffice-langpack-mai is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458085
      • comment libreoffice-langpack-mai is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135014
    • AND
      • comment libreoffice-langpack-ml is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458069
      • comment libreoffice-langpack-ml is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135050
    • AND
      • comment libreoffice-langpack-mr is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458155
      • comment libreoffice-langpack-mr is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135110
    • AND
      • comment libreoffice-langpack-ms is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458165
      • comment libreoffice-langpack-ms is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135054
    • AND
      • comment libreoffice-langpack-nb is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458157
      • comment libreoffice-langpack-nb is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135228
    • AND
      • comment libreoffice-langpack-nl is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458071
      • comment libreoffice-langpack-nl is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135008
    • AND
      • comment libreoffice-langpack-nn is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458107
      • comment libreoffice-langpack-nn is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135132
    • AND
      • comment libreoffice-langpack-nr is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458103
      • comment libreoffice-langpack-nr is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135204
    • AND
      • comment libreoffice-langpack-nso is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458045
      • comment libreoffice-langpack-nso is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135156
    • AND
      • comment libreoffice-langpack-or is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458177
      • comment libreoffice-langpack-or is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135128
    • AND
      • comment libreoffice-langpack-pa is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458077
      • comment libreoffice-langpack-pa is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135140
    • AND
      • comment libreoffice-langpack-pl is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458101
      • comment libreoffice-langpack-pl is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135040
    • AND
      • comment libreoffice-langpack-pt-BR is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458139
      • comment libreoffice-langpack-pt-BR is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135102
    • AND
      • comment libreoffice-langpack-pt-PT is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458031
      • comment libreoffice-langpack-pt-PT is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135252
    • AND
      • comment libreoffice-langpack-ro is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458035
      • comment libreoffice-langpack-ro is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135074
    • AND
      • comment libreoffice-langpack-ru is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458147
      • comment libreoffice-langpack-ru is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135242
    • AND
      • comment libreoffice-langpack-sk is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458015
      • comment libreoffice-langpack-sk is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135198
    • AND
      • comment libreoffice-langpack-sl is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458017
      • comment libreoffice-langpack-sl is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135048
    • AND
      • comment libreoffice-langpack-sr is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458029
      • comment libreoffice-langpack-sr is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135170
    • AND
      • comment libreoffice-langpack-ss is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458113
      • comment libreoffice-langpack-ss is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135084
    • AND
      • comment libreoffice-langpack-st is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458049
      • comment libreoffice-langpack-st is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135148
    • AND
      • comment libreoffice-langpack-sv is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458161
      • comment libreoffice-langpack-sv is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135112
    • AND
      • comment libreoffice-langpack-ta is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458059
      • comment libreoffice-langpack-ta is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135246
    • AND
      • comment libreoffice-langpack-te is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458141
      • comment libreoffice-langpack-te is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135022
    • AND
      • comment libreoffice-langpack-th is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458033
      • comment libreoffice-langpack-th is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135206
    • AND
      • comment libreoffice-langpack-tn is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458083
      • comment libreoffice-langpack-tn is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135130
    • AND
      • comment libreoffice-langpack-tr is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458013
      • comment libreoffice-langpack-tr is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135096
    • AND
      • comment libreoffice-langpack-ts is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458063
      • comment libreoffice-langpack-ts is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135010
    • AND
      • comment libreoffice-langpack-uk is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458053
      • comment libreoffice-langpack-uk is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135080
    • AND
      • comment libreoffice-langpack-ur is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458121
      • comment libreoffice-langpack-ur is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135154
    • AND
      • comment libreoffice-langpack-ve is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458105
      • comment libreoffice-langpack-ve is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135238
    • AND
      • comment libreoffice-langpack-xh is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458019
      • comment libreoffice-langpack-xh is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135236
    • AND
      • comment libreoffice-langpack-zh-Hans is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458125
      • comment libreoffice-langpack-zh-Hans is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135046
    • AND
      • comment libreoffice-langpack-zh-Hant is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458057
      • comment libreoffice-langpack-zh-Hant is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135038
    • AND
      • comment libreoffice-langpack-zu is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458047
      • comment libreoffice-langpack-zu is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135174
    • AND
      • comment libreoffice-librelogo is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458151
      • comment libreoffice-librelogo is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20150377080
    • AND
      • comment libreoffice-math is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458173
      • comment libreoffice-math is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135030
    • AND
      • comment libreoffice-nlpsolver is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458175
      • comment libreoffice-nlpsolver is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20150377160
    • AND
      • comment libreoffice-ogltrans is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458123
      • comment libreoffice-ogltrans is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135152
    • AND
      • comment libreoffice-opensymbol-fonts is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458219
      • comment libreoffice-opensymbol-fonts is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135120
    • AND
      • comment libreoffice-pdfimport is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458079
      • comment libreoffice-pdfimport is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135118
    • AND
      • comment libreoffice-pyuno is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458137
      • comment libreoffice-pyuno is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135144
    • AND
      • comment libreoffice-rhino is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458087
      • comment libreoffice-rhino is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135126
    • AND
      • comment libreoffice-sdk is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458099
      • comment libreoffice-sdk is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135090
    • AND
      • comment libreoffice-sdk-doc is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458067
      • comment libreoffice-sdk-doc is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135168
    • AND
      • comment libreoffice-ure is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458007
      • comment libreoffice-ure is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135208
    • AND
      • comment libreoffice-wiki-publisher is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458135
      • comment libreoffice-wiki-publisher is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135072
    • AND
      • comment libreoffice-writer is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458179
      • comment libreoffice-writer is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135020
    • AND
      • comment libreoffice-xsltfilter is earlier than 1:4.2.8.2-11.el6
        oval oval:com.redhat.rhsa:tst:20151458089
      • comment libreoffice-xsltfilter is signed with Red Hat redhatrelease2 key
        oval oval:com.redhat.rhsa:tst:20121135188
rhsa
id RHSA-2015:1458
released 2015-07-22
severity Moderate
title RHSA-2015:1458: libreoffice security, bug fix, and enhancement update (Moderate)
rpms
  • autocorr-af-1:4.2.8.2-11.el6
  • autocorr-bg-1:4.2.8.2-11.el6
  • autocorr-ca-1:4.2.8.2-11.el6
  • autocorr-cs-1:4.2.8.2-11.el6
  • autocorr-da-1:4.2.8.2-11.el6
  • autocorr-de-1:4.2.8.2-11.el6
  • autocorr-en-1:4.2.8.2-11.el6
  • autocorr-es-1:4.2.8.2-11.el6
  • autocorr-fa-1:4.2.8.2-11.el6
  • autocorr-fi-1:4.2.8.2-11.el6
  • autocorr-fr-1:4.2.8.2-11.el6
  • autocorr-ga-1:4.2.8.2-11.el6
  • autocorr-hr-1:4.2.8.2-11.el6
  • autocorr-hu-1:4.2.8.2-11.el6
  • autocorr-is-1:4.2.8.2-11.el6
  • autocorr-it-1:4.2.8.2-11.el6
  • autocorr-ja-1:4.2.8.2-11.el6
  • autocorr-ko-1:4.2.8.2-11.el6
  • autocorr-lb-1:4.2.8.2-11.el6
  • autocorr-lt-1:4.2.8.2-11.el6
  • autocorr-mn-1:4.2.8.2-11.el6
  • autocorr-nl-1:4.2.8.2-11.el6
  • autocorr-pl-1:4.2.8.2-11.el6
  • autocorr-pt-1:4.2.8.2-11.el6
  • autocorr-ro-1:4.2.8.2-11.el6
  • autocorr-ru-1:4.2.8.2-11.el6
  • autocorr-sk-1:4.2.8.2-11.el6
  • autocorr-sl-1:4.2.8.2-11.el6
  • autocorr-sr-1:4.2.8.2-11.el6
  • autocorr-sv-1:4.2.8.2-11.el6
  • autocorr-tr-1:4.2.8.2-11.el6
  • autocorr-vi-1:4.2.8.2-11.el6
  • autocorr-zh-1:4.2.8.2-11.el6
  • libreoffice-1:4.2.8.2-11.el6
  • libreoffice-base-1:4.2.8.2-11.el6
  • libreoffice-bsh-1:4.2.8.2-11.el6
  • libreoffice-calc-1:4.2.8.2-11.el6
  • libreoffice-core-1:4.2.8.2-11.el6
  • libreoffice-draw-1:4.2.8.2-11.el6
  • libreoffice-emailmerge-1:4.2.8.2-11.el6
  • libreoffice-filters-1:4.2.8.2-11.el6
  • libreoffice-gdb-debug-support-1:4.2.8.2-11.el6
  • libreoffice-glade-1:4.2.8.2-11.el6
  • libreoffice-graphicfilter-1:4.2.8.2-11.el6
  • libreoffice-headless-1:4.2.8.2-11.el6
  • libreoffice-impress-1:4.2.8.2-11.el6
  • libreoffice-langpack-af-1:4.2.8.2-11.el6
  • libreoffice-langpack-ar-1:4.2.8.2-11.el6
  • libreoffice-langpack-as-1:4.2.8.2-11.el6
  • libreoffice-langpack-bg-1:4.2.8.2-11.el6
  • libreoffice-langpack-bn-1:4.2.8.2-11.el6
  • libreoffice-langpack-ca-1:4.2.8.2-11.el6
  • libreoffice-langpack-cs-1:4.2.8.2-11.el6
  • libreoffice-langpack-cy-1:4.2.8.2-11.el6
  • libreoffice-langpack-da-1:4.2.8.2-11.el6
  • libreoffice-langpack-de-1:4.2.8.2-11.el6
  • libreoffice-langpack-dz-1:4.2.8.2-11.el6
  • libreoffice-langpack-el-1:4.2.8.2-11.el6
  • libreoffice-langpack-en-1:4.2.8.2-11.el6
  • libreoffice-langpack-es-1:4.2.8.2-11.el6
  • libreoffice-langpack-et-1:4.2.8.2-11.el6
  • libreoffice-langpack-eu-1:4.2.8.2-11.el6
  • libreoffice-langpack-fi-1:4.2.8.2-11.el6
  • libreoffice-langpack-fr-1:4.2.8.2-11.el6
  • libreoffice-langpack-ga-1:4.2.8.2-11.el6
  • libreoffice-langpack-gl-1:4.2.8.2-11.el6
  • libreoffice-langpack-gu-1:4.2.8.2-11.el6
  • libreoffice-langpack-he-1:4.2.8.2-11.el6
  • libreoffice-langpack-hi-1:4.2.8.2-11.el6
  • libreoffice-langpack-hr-1:4.2.8.2-11.el6
  • libreoffice-langpack-hu-1:4.2.8.2-11.el6
  • libreoffice-langpack-it-1:4.2.8.2-11.el6
  • libreoffice-langpack-ja-1:4.2.8.2-11.el6
  • libreoffice-langpack-kn-1:4.2.8.2-11.el6
  • libreoffice-langpack-ko-1:4.2.8.2-11.el6
  • libreoffice-langpack-lt-1:4.2.8.2-11.el6
  • libreoffice-langpack-mai-1:4.2.8.2-11.el6
  • libreoffice-langpack-ml-1:4.2.8.2-11.el6
  • libreoffice-langpack-mr-1:4.2.8.2-11.el6
  • libreoffice-langpack-ms-1:4.2.8.2-11.el6
  • libreoffice-langpack-nb-1:4.2.8.2-11.el6
  • libreoffice-langpack-nl-1:4.2.8.2-11.el6
  • libreoffice-langpack-nn-1:4.2.8.2-11.el6
  • libreoffice-langpack-nr-1:4.2.8.2-11.el6
  • libreoffice-langpack-nso-1:4.2.8.2-11.el6
  • libreoffice-langpack-or-1:4.2.8.2-11.el6
  • libreoffice-langpack-pa-1:4.2.8.2-11.el6
  • libreoffice-langpack-pl-1:4.2.8.2-11.el6
  • libreoffice-langpack-pt-BR-1:4.2.8.2-11.el6
  • libreoffice-langpack-pt-PT-1:4.2.8.2-11.el6
  • libreoffice-langpack-ro-1:4.2.8.2-11.el6
  • libreoffice-langpack-ru-1:4.2.8.2-11.el6
  • libreoffice-langpack-sk-1:4.2.8.2-11.el6
  • libreoffice-langpack-sl-1:4.2.8.2-11.el6
  • libreoffice-langpack-sr-1:4.2.8.2-11.el6
  • libreoffice-langpack-ss-1:4.2.8.2-11.el6
  • libreoffice-langpack-st-1:4.2.8.2-11.el6
  • libreoffice-langpack-sv-1:4.2.8.2-11.el6
  • libreoffice-langpack-ta-1:4.2.8.2-11.el6
  • libreoffice-langpack-te-1:4.2.8.2-11.el6
  • libreoffice-langpack-th-1:4.2.8.2-11.el6
  • libreoffice-langpack-tn-1:4.2.8.2-11.el6
  • libreoffice-langpack-tr-1:4.2.8.2-11.el6
  • libreoffice-langpack-ts-1:4.2.8.2-11.el6
  • libreoffice-langpack-uk-1:4.2.8.2-11.el6
  • libreoffice-langpack-ur-1:4.2.8.2-11.el6
  • libreoffice-langpack-ve-1:4.2.8.2-11.el6
  • libreoffice-langpack-xh-1:4.2.8.2-11.el6
  • libreoffice-langpack-zh-Hans-1:4.2.8.2-11.el6
  • libreoffice-langpack-zh-Hant-1:4.2.8.2-11.el6
  • libreoffice-langpack-zu-1:4.2.8.2-11.el6
  • libreoffice-librelogo-1:4.2.8.2-11.el6
  • libreoffice-math-1:4.2.8.2-11.el6
  • libreoffice-nlpsolver-1:4.2.8.2-11.el6
  • libreoffice-ogltrans-1:4.2.8.2-11.el6
  • libreoffice-opensymbol-fonts-1:4.2.8.2-11.el6
  • libreoffice-pdfimport-1:4.2.8.2-11.el6
  • libreoffice-pyuno-1:4.2.8.2-11.el6
  • libreoffice-rhino-1:4.2.8.2-11.el6
  • libreoffice-sdk-1:4.2.8.2-11.el6
  • libreoffice-sdk-doc-1:4.2.8.2-11.el6
  • libreoffice-ure-1:4.2.8.2-11.el6
  • libreoffice-wiki-publisher-1:4.2.8.2-11.el6
  • libreoffice-writer-1:4.2.8.2-11.el6
  • libreoffice-xsltfilter-1:4.2.8.2-11.el6
refmap via4
bid 74338
confirm
debian DSA-3236
fedora
  • FEDORA-2015-7022
  • FEDORA-2015-7213
gentoo GLSA-201603-05
idefense 20150427 Multiple Vendor LibreOffice "HWPFILTER" Out Of Bounds Access Vulnerability
sectrack
  • 1032205
  • 1032206
suse openSUSE-SU-2015:0859
ubuntu USN-2578-1
Last major update 02-01-2017 - 21:59
Published 28-04-2015 - 10:59
Back to Top