{"id":59776,"date":"2024-09-18T17:50:03","date_gmt":"2024-09-18T14:50:03","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/181611\/dsa-5772-1.txt"},"modified":"2024-09-18T17:50:03","modified_gmt":"2024-09-18T14:50:03","slug":"debian-security-advisory-5772-1","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/debian-security-advisory-5772-1\/","title":{"rendered":"Debian Security Advisory 5772-1"},"content":{"rendered":"<p>&#8212;&#8211;BEGIN PGP SIGNED MESSAGE&#8212;&#8211;<br \/>Hash: SHA512<\/p>\n<p>&#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;-<br \/>Debian Security Advisory DSA-5772-1 security@debian.org<br \/>https:\/\/www.debian.org\/security\/ Moritz Muehlenhoff<br \/>September 17, 2024 https:\/\/www.debian.org\/security\/faq<br \/>&#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;-<\/p>\n<p>Package : libreoffice<br \/>CVE ID : CVE-2024-7788<\/p>\n<p>Yufan You discovered that Libreoffice&#8217;s handling of documents based on<br \/>ZIP archives was suspectible to spoofing attacks when the repair mode<br \/>attempts to address a malformed archive structure.<\/p>\n<p>For additional information please refer to<br \/>https:\/\/www.libreoffice.org\/about-us\/security\/advisories\/cve-2024-7788\/<\/p>\n<p>For the stable distribution (bookworm), this problem has been fixed in<br \/>version 4:7.4.7-1+deb12u5.<\/p>\n<p>We recommend that you upgrade your libreoffice packages.<\/p>\n<p>For the detailed security status of libreoffice please refer to<br \/>its security tracker page at:<br \/>https:\/\/security-tracker.debian.org\/tracker\/libreoffice<\/p>\n<p>Further information about Debian Security Advisories, how to apply<br \/>these updates to your system and frequently asked questions can be<br \/>found at: https:\/\/www.debian.org\/security\/<\/p>\n<p>Mailing list: debian-security-announce@lists.debian.org<br \/>&#8212;&#8211;BEGIN PGP SIGNATURE&#8212;&#8211;<\/p>\n<p>iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmbp7VsACgkQEMKTtsN8<br \/>TjY20RAAuJuPyqB0ViM2E\/MxqoqTFSzbC9q7XH\/5txXMdAQhpxv1HioaiITMFyai<br \/>auAPQTPJcanGdEi2QUwyS8woKXbUJQfCvwKBfUcBD7F8urAB6xeCWV2tHwW1HnI5<br \/>Af169qwqGQ1gU\/pSEmatW5BmFB1fGtsaZGuCFWPOiZ8LUgm9RWRxjqZRqsM4N8Ie<br \/>\/TIGpHwhoi6gKi04Yq10i7uWeR9YAVSADCljKEIuwUfsV23QGxBnhmLjnSj+d7x1<br \/>uh+CiZdRCS2Z8EYtVhkwS4C9D2vT1Tyj8WktQn2QUG85PAkjjvtuEOxhHY65TOkV<br \/>RXZh7rW7hDF6AYL\/wzFvIPFyXg76T5NSqxXiU+P+dqYlMPRgHJG6fLepRZ58V9JP<br \/>LZ4FW13h16t6yeXLg5xiRxviZxczhA8zHZYXXSlyUzB1e+qn2UIg3\/qydDiqKlH7<br \/>e3HczIUEU3U+FJ5py9oadsRnZoMS7ZpLN91KYakV62yTcfLTDeBhOM4p04qNoluJ<br \/>thd\/egrNaOZNyUknxZHbvC\/qcY3T5FIMQcwM3Yg0rlpSKUs69Yiqag8cOYI2JmLl<br \/>peFr8i3xQcPyCsZl2NwkVLVXeiFS4gPYwmv00J+p7C3vnHMk1+MVyry3oZeXWL5X<br \/>ffDlL\/Y\/6\/Ht9hdwC1N79FmDbdNwZ+iEspZYTaeDhOCvfQ0bU9Q=<br \/>=ZHJC<br \/>&#8212;&#8211;END PGP SIGNATURE&#8212;&#8211;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8212;&#8211;BEGIN PGP SIGNED MESSAGE&#8212;&#8211;Hash: SHA512 &#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;-Debian Security Advisory DSA-5772-1 security@debian.orghttps:\/\/www.debian.org\/security\/ Moritz MuehlenhoffSeptember 17, 2024 https:\/\/www.debian.org\/security\/faq&#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;- Package : libreofficeCVE ID : CVE-2024-7788 Yufan You discovered that Libreoffice&#8217;s handling of documents based onZIP archives was suspectible to spoofing attacks when the repair modeattempts to address a malformed archive structure. For additional information please refer tohttps:\/\/www.libreoffice.org\/about-us\/security\/advisories\/cve-2024-7788\/ &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-59776","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/59776","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=59776"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/59776\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=59776"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=59776"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=59776"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}