SUSE Security Update: Security update for LibreOffice
______________________________________________________________________________

Announcement ID:    SUSE-SU-2020:0372-1
Rating:             moderate
References:         #1061210 #1105173 #1144522 #1152684 
Cross-References:   CVE-2019-9853
Affected Products:
                    SUSE Linux Enterprise Workstation Extension 12-SP5
                    SUSE Linux Enterprise Workstation Extension 12-SP4
                    SUSE Linux Enterprise Software Development Kit 12-SP5
                    SUSE Linux Enterprise Software Development Kit 12-SP4
                    SUSE Linux Enterprise Server 12-SP5
                    SUSE Linux Enterprise Server 12-SP4
______________________________________________________________________________

   An update that solves one vulnerability and has three fixes
   is now available.

Description:

   This update libreoffice and libraries fixes the following issues:

   LibreOffice was updated to 6.3.3 (jsc#SLE-8705), bringing many bug and
   stability fixes.

   More information for the 6.3 release at:
   https://wiki.documentfoundation.org/ReleaseNotes/6.3

   Security issue fixed:

   - CVE-2019-9853: Fixed an issue where by executing macros, the security
     settings could have been bypassed (bsc#1152684).

   Other issues addressed:

   - Dropped disable-kde4 switch, since it is no longer known by configure
   - Disabled gtk2 because it will be removed in future releases
   - librelogo is now a standalone sub-package (bsc#1144522).
   - Partial fixes for an issue where Table(s) from  DOCX showed wrong
     position or color (bsc#1061210).

   cmis-client was updated to 0.5.2:

    * Removed header for Uuid's sha1 header(bsc#1105173).
    * Fixed Google Drive login
    * Added support for Google Drive two-factor authentication
    * Fixed access to SharePoint root folder
    * Limited the maximal number of redirections to 20
    * Switched library implementation to C++11 (the API remains
      C++98-compatible)
    * Fixed encoding of OAuth2 credentials
    * Dropped cppcheck run from "make check". A new "make cppcheck" target
      was created for it
    * Added proper API symbol exporting
    * Speeded up building of tests a bit
    * Fixed a few issues found by coverity and cppcheck

   libixion was updated to 0.15.0:

    * Updated for new liborcus
    * Switched to spdlog for compile-time debug log outputs
    * Fixed various issues

   libmwaw was updated 0.3.15:

    * Fixed fuzzing issues

   liborcus was updated to 0.15.3:

    * Fixed various xml related bugs
    * Improved performance
    * Fixed multiple parser issues
    * Added map and structure mode to orcus-json
    * Other improvements and fixes

   mdds was updated to 1.5.0:

    * API changed to 1.5
    * Moved the API incompatibility notes from README to the rst doc.
    * Added the overview section for flat_segment_tree.

   myspell-dictionaries was updated to 20191016:

    * Updated Slovenian thesaurus
    * Updated the da_DK dictionary
    * Removed the abbreviations from Thai hunspell dictionary
    * Updated the English dictionaries
    * Fixed the logo management for "ca"

   spdlog was updated to 0.16.3:

    * Fixed sleep issue under MSVC that happens when changing the clock
      backwards
    * Ensured that macros always expand to expressions
    * Added global flush_on function

   bluez changes:

    * lib: Changed bluetooth.h to compile in strict C

   gperf was updated to 3.1:

    * The generated C code is now in ANSI-C by default.
    * Added option --constants-prefix.
    * Added declaration %define constants-prefix.


Patch Instructions:

   To install this SUSE Security Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Workstation Extension 12-SP5:

      zypper in -t patch SUSE-SLE-WE-12-SP5-2020-372=1

   - SUSE Linux Enterprise Workstation Extension 12-SP4:

      zypper in -t patch SUSE-SLE-WE-12-SP4-2020-372=1

   - SUSE Linux Enterprise Software Development Kit 12-SP5:

      zypper in -t patch SUSE-SLE-SDK-12-SP5-2020-372=1

   - SUSE Linux Enterprise Software Development Kit 12-SP4:

      zypper in -t patch SUSE-SLE-SDK-12-SP4-2020-372=1

   - SUSE Linux Enterprise Server 12-SP5:

      zypper in -t patch SUSE-SLE-SERVER-12-SP5-2020-372=1

   - SUSE Linux Enterprise Server 12-SP4:

      zypper in -t patch SUSE-SLE-SERVER-12-SP4-2020-372=1



Package List:

   - SUSE Linux Enterprise Workstation Extension 12-SP5 (noarch):

      libreoffice-branding-upstream-6.3.3.2-43.59.5
      libreoffice-icon-themes-6.3.3.2-43.59.5
      libreoffice-l10n-af-6.3.3.2-43.59.5
      libreoffice-l10n-ar-6.3.3.2-43.59.5
      libreoffice-l10n-bg-6.3.3.2-43.59.5
      libreoffice-l10n-ca-6.3.3.2-43.59.5
      libreoffice-l10n-cs-6.3.3.2-43.59.5
      libreoffice-l10n-da-6.3.3.2-43.59.5
      libreoffice-l10n-de-6.3.3.2-43.59.5
      libreoffice-l10n-en-6.3.3.2-43.59.5
      libreoffice-l10n-es-6.3.3.2-43.59.5
      libreoffice-l10n-fi-6.3.3.2-43.59.5
      libreoffice-l10n-fr-6.3.3.2-43.59.5
      libreoffice-l10n-gu-6.3.3.2-43.59.5
      libreoffice-l10n-hi-6.3.3.2-43.59.5
      libreoffice-l10n-hr-6.3.3.2-43.59.5
      libreoffice-l10n-hu-6.3.3.2-43.59.5
      libreoffice-l10n-it-6.3.3.2-43.59.5
      libreoffice-l10n-ja-6.3.3.2-43.59.5
      libreoffice-l10n-ko-6.3.3.2-43.59.5
      libreoffice-l10n-lt-6.3.3.2-43.59.5
      libreoffice-l10n-nb-6.3.3.2-43.59.5
      libreoffice-l10n-nl-6.3.3.2-43.59.5
      libreoffice-l10n-nn-6.3.3.2-43.59.5
      libreoffice-l10n-pl-6.3.3.2-43.59.5
      libreoffice-l10n-pt_BR-6.3.3.2-43.59.5
      libreoffice-l10n-pt_PT-6.3.3.2-43.59.5
      libreoffice-l10n-ro-6.3.3.2-43.59.5
      libreoffice-l10n-ru-6.3.3.2-43.59.5
      libreoffice-l10n-sk-6.3.3.2-43.59.5
      libreoffice-l10n-sv-6.3.3.2-43.59.5
      libreoffice-l10n-uk-6.3.3.2-43.59.5
      libreoffice-l10n-xh-6.3.3.2-43.59.5
      libreoffice-l10n-zh_CN-6.3.3.2-43.59.5
      libreoffice-l10n-zh_TW-6.3.3.2-43.59.5
      libreoffice-l10n-zu-6.3.3.2-43.59.5
      myspell-af_NA-20191016-16.21.1
      myspell-af_ZA-20191016-16.21.1
      myspell-ar-20191016-16.21.1
      myspell-ar_AE-20191016-16.21.1
      myspell-ar_BH-20191016-16.21.1
      myspell-ar_DZ-20191016-16.21.1
      myspell-ar_EG-20191016-16.21.1
      myspell-ar_IQ-20191016-16.21.1
      myspell-ar_JO-20191016-16.21.1
      myspell-ar_KW-20191016-16.21.1
      myspell-ar_LB-20191016-16.21.1
      myspell-ar_LY-20191016-16.21.1
      myspell-ar_MA-20191016-16.21.1
      myspell-ar_OM-20191016-16.21.1
      myspell-ar_QA-20191016-16.21.1
      myspell-ar_SA-20191016-16.21.1
      myspell-ar_SD-20191016-16.21.1
      myspell-ar_SY-20191016-16.21.1
      myspell-ar_TN-20191016-16.21.1
      myspell-ar_YE-20191016-16.21.1
      myspell-be_BY-20191016-16.21.1
      myspell-bg_BG-20191016-16.21.1
      myspell-bn_BD-20191016-16.21.1
      myspell-bn_IN-20191016-16.21.1
      myspell-bs-20191016-16.21.1
      myspell-bs_BA-20191016-16.21.1
      myspell-ca-20191016-16.21.1
      myspell-ca_AD-20191016-16.21.1
      myspell-ca_ES-20191016-16.21.1
      myspell-ca_ES_valencia-20191016-16.21.1
      myspell-ca_FR-20191016-16.21.1
      myspell-ca_IT-20191016-16.21.1
      myspell-cs_CZ-20191016-16.21.1
      myspell-da_DK-20191016-16.21.1
      myspell-de-20191016-16.21.1
      myspell-de_AT-20191016-16.21.1
      myspell-de_CH-20191016-16.21.1
      myspell-de_DE-20191016-16.21.1
      myspell-el_GR-20191016-16.21.1
      myspell-en-20191016-16.21.1
      myspell-en_AU-20191016-16.21.1
      myspell-en_BS-20191016-16.21.1
      myspell-en_BZ-20191016-16.21.1
      myspell-en_CA-20191016-16.21.1
      myspell-en_GB-20191016-16.21.1
      myspell-en_GH-20191016-16.21.1
      myspell-en_IE-20191016-16.21.1
      myspell-en_IN-20191016-16.21.1
      myspell-en_JM-20191016-16.21.1
      myspell-en_MW-20191016-16.21.1
      myspell-en_NA-20191016-16.21.1
      myspell-en_NZ-20191016-16.21.1
      myspell-en_PH-20191016-16.21.1
      myspell-en_TT-20191016-16.21.1
      myspell-en_US-20191016-16.21.1
      myspell-en_ZA-20191016-16.21.1
      myspell-en_ZW-20191016-16.21.1
      myspell-es-20191016-16.21.1
      myspell-es_AR-20191016-16.21.1
      myspell-es_BO-20191016-16.21.1
      myspell-es_CL-20191016-16.21.1
      myspell-es_CO-20191016-16.21.1
      myspell-es_CR-20191016-16.21.1
      myspell-es_CU-20191016-16.21.1
      myspell-es_DO-20191016-16.21.1
      myspell-es_EC-20191016-16.21.1
      myspell-es_ES-20191016-16.21.1
      myspell-es_GT-20191016-16.21.1
      myspell-es_HN-20191016-16.21.1
      myspell-es_MX-20191016-16.21.1
      myspell-es_NI-20191016-16.21.1
      myspell-es_PA-20191016-16.21.1
      myspell-es_PE-20191016-16.21.1
      myspell-es_PR-20191016-16.21.1
      myspell-es_PY-20191016-16.21.1
      myspell-es_SV-20191016-16.21.1
      myspell-es_UY-20191016-16.21.1
      myspell-es_VE-20191016-16.21.1
      myspell-et_EE-20191016-16.21.1
      myspell-fr_BE-20191016-16.21.1
      myspell-fr_CA-20191016-16.21.1
      myspell-fr_CH-20191016-16.21.1
      myspell-fr_FR-20191016-16.21.1
      myspell-fr_LU-20191016-16.21.1
      myspell-fr_MC-20191016-16.21.1
      myspell-gu_IN-20191016-16.21.1
      myspell-he_IL-20191016-16.21.1
      myspell-hi_IN-20191016-16.21.1
      myspell-hr_HR-20191016-16.21.1
      myspell-hu_HU-20191016-16.21.1
      myspell-id-20191016-16.21.1
      myspell-id_ID-20191016-16.21.1
      myspell-it_IT-20191016-16.21.1
      myspell-lo_LA-20191016-16.21.1
      myspell-lt_LT-20191016-16.21.1
      myspell-lv_LV-20191016-16.21.1
      myspell-nb_NO-20191016-16.21.1
      myspell-nl_BE-20191016-16.21.1
      myspell-nl_NL-20191016-16.21.1
      myspell-nn_NO-20191016-16.21.1
      myspell-no-20191016-16.21.1
      myspell-pl_PL-20191016-16.21.1
      myspell-pt_AO-20191016-16.21.1
      myspell-pt_BR-20191016-16.21.1
      myspell-pt_PT-20191016-16.21.1
      myspell-ro-20191016-16.21.1
      myspell-ro_RO-20191016-16.21.1
      myspell-ru_RU-20191016-16.21.1
      myspell-sk_SK-20191016-16.21.1
      myspell-sl_SI-20191016-16.21.1
      myspell-sr-20191016-16.21.1
      myspell-sr_CS-20191016-16.21.1
      myspell-sr_Latn_CS-20191016-16.21.1
      myspell-sr_Latn_RS-20191016-16.21.1
      myspell-sr_RS-20191016-16.21.1
      myspell-sv_FI-20191016-16.21.1
      myspell-sv_SE-20191016-16.21.1
      myspell-te-20191016-16.21.1
      myspell-te_IN-20191016-16.21.1
      myspell-th_TH-20191016-16.21.1
      myspell-uk_UA-20191016-16.21.1
      myspell-vi-20191016-16.21.1
      myspell-vi_VN-20191016-16.21.1
      myspell-zu_ZA-20191016-16.21.1

   - SUSE Linux Enterprise Workstation Extension 12-SP5 (x86_64):

      bluez-cups-5.13-5.20.6
      bluez-cups-debuginfo-5.13-5.20.6
      bluez-debuginfo-5.13-5.20.6
      bluez-debugsource-5.13-5.20.6
      cmis-client-debuginfo-0.5.2-9.3.1
      cmis-client-debugsource-0.5.2-9.3.1
      libcmis-0_5-5-0.5.2-9.3.1
      libcmis-0_5-5-debuginfo-0.5.2-9.3.1
      libixion-0_15-0-0.15.0-13.12.1
      libixion-0_15-0-debuginfo-0.15.0-13.12.1
      libixion-debugsource-0.15.0-13.12.1
      libmwaw-0_3-3-0.3.15-7.15.1
      libmwaw-0_3-3-debuginfo-0.3.15-7.15.1
      libmwaw-debugsource-0.3.15-7.15.1
      liborcus-0_15-0-0.15.3-10.15.1
      liborcus-0_15-0-debuginfo-0.15.3-10.15.1
      liborcus-debugsource-0.15.3-10.15.1
      libreoffice-6.3.3.2-43.59.5
      libreoffice-base-6.3.3.2-43.59.5
      libreoffice-base-debuginfo-6.3.3.2-43.59.5
      libreoffice-base-drivers-postgresql-6.3.3.2-43.59.5
      libreoffice-base-drivers-postgresql-debuginfo-6.3.3.2-43.59.5
      libreoffice-calc-6.3.3.2-43.59.5
      libreoffice-calc-debuginfo-6.3.3.2-43.59.5
      libreoffice-calc-extensions-6.3.3.2-43.59.5
      libreoffice-debuginfo-6.3.3.2-43.59.5
      libreoffice-debugsource-6.3.3.2-43.59.5
      libreoffice-draw-6.3.3.2-43.59.5
      libreoffice-draw-debuginfo-6.3.3.2-43.59.5
      libreoffice-filters-optional-6.3.3.2-43.59.5
      libreoffice-gnome-6.3.3.2-43.59.5
      libreoffice-gnome-debuginfo-6.3.3.2-43.59.5
      libreoffice-impress-6.3.3.2-43.59.5
      libreoffice-impress-debuginfo-6.3.3.2-43.59.5
      libreoffice-librelogo-6.3.3.2-43.59.5
      libreoffice-mailmerge-6.3.3.2-43.59.5
      libreoffice-math-6.3.3.2-43.59.5
      libreoffice-math-debuginfo-6.3.3.2-43.59.5
      libreoffice-officebean-6.3.3.2-43.59.5
      libreoffice-officebean-debuginfo-6.3.3.2-43.59.5
      libreoffice-pyuno-6.3.3.2-43.59.5
      libreoffice-pyuno-debuginfo-6.3.3.2-43.59.5
      libreoffice-writer-6.3.3.2-43.59.5
      libreoffice-writer-debuginfo-6.3.3.2-43.59.5
      libreoffice-writer-extensions-6.3.3.2-43.59.5
      myspell-dictionaries-20191016-16.21.1
      myspell-lightproof-en-20191016-16.21.1
      myspell-lightproof-hu_HU-20191016-16.21.1
      myspell-lightproof-pt_BR-20191016-16.21.1
      myspell-lightproof-ru_RU-20191016-16.21.1

   - SUSE Linux Enterprise Workstation Extension 12-SP4 (noarch):

      libreoffice-branding-upstream-6.3.3.2-43.59.5
      libreoffice-icon-themes-6.3.3.2-43.59.5
      libreoffice-l10n-af-6.3.3.2-43.59.5
      libreoffice-l10n-ar-6.3.3.2-43.59.5
      libreoffice-l10n-bg-6.3.3.2-43.59.5
      libreoffice-l10n-ca-6.3.3.2-43.59.5
      libreoffice-l10n-cs-6.3.3.2-43.59.5
      libreoffice-l10n-da-6.3.3.2-43.59.5
      libreoffice-l10n-de-6.3.3.2-43.59.5
      libreoffice-l10n-en-6.3.3.2-43.59.5
      libreoffice-l10n-es-6.3.3.2-43.59.5
      libreoffice-l10n-fi-6.3.3.2-43.59.5
      libreoffice-l10n-fr-6.3.3.2-43.59.5
      libreoffice-l10n-gu-6.3.3.2-43.59.5
      libreoffice-l10n-hi-6.3.3.2-43.59.5
      libreoffice-l10n-hr-6.3.3.2-43.59.5
      libreoffice-l10n-hu-6.3.3.2-43.59.5
      libreoffice-l10n-it-6.3.3.2-43.59.5
      libreoffice-l10n-ja-6.3.3.2-43.59.5
      libreoffice-l10n-ko-6.3.3.2-43.59.5
      libreoffice-l10n-lt-6.3.3.2-43.59.5
      libreoffice-l10n-nb-6.3.3.2-43.59.5
      libreoffice-l10n-nl-6.3.3.2-43.59.5
      libreoffice-l10n-nn-6.3.3.2-43.59.5
      libreoffice-l10n-pl-6.3.3.2-43.59.5
      libreoffice-l10n-pt_BR-6.3.3.2-43.59.5
      libreoffice-l10n-pt_PT-6.3.3.2-43.59.5
      libreoffice-l10n-ro-6.3.3.2-43.59.5
      libreoffice-l10n-ru-6.3.3.2-43.59.5
      libreoffice-l10n-sk-6.3.3.2-43.59.5
      libreoffice-l10n-sv-6.3.3.2-43.59.5
      libreoffice-l10n-uk-6.3.3.2-43.59.5
      libreoffice-l10n-xh-6.3.3.2-43.59.5
      libreoffice-l10n-zh_CN-6.3.3.2-43.59.5
      libreoffice-l10n-zh_TW-6.3.3.2-43.59.5
      libreoffice-l10n-zu-6.3.3.2-43.59.5
      myspell-af_NA-20191016-16.21.1
      myspell-af_ZA-20191016-16.21.1
      myspell-ar-20191016-16.21.1
      myspell-ar_AE-20191016-16.21.1
      myspell-ar_BH-20191016-16.21.1
      myspell-ar_DZ-20191016-16.21.1
      myspell-ar_EG-20191016-16.21.1
      myspell-ar_IQ-20191016-16.21.1
      myspell-ar_JO-20191016-16.21.1
      myspell-ar_KW-20191016-16.21.1
      myspell-ar_LB-20191016-16.21.1
      myspell-ar_LY-20191016-16.21.1
      myspell-ar_MA-20191016-16.21.1
      myspell-ar_OM-20191016-16.21.1
      myspell-ar_QA-20191016-16.21.1
      myspell-ar_SA-20191016-16.21.1
      myspell-ar_SD-20191016-16.21.1
      myspell-ar_SY-20191016-16.21.1
      myspell-ar_TN-20191016-16.21.1
      myspell-ar_YE-20191016-16.21.1
      myspell-be_BY-20191016-16.21.1
      myspell-bg_BG-20191016-16.21.1
      myspell-bn_BD-20191016-16.21.1
      myspell-bn_IN-20191016-16.21.1
      myspell-bs-20191016-16.21.1
      myspell-bs_BA-20191016-16.21.1
      myspell-ca-20191016-16.21.1
      myspell-ca_AD-20191016-16.21.1
      myspell-ca_ES-20191016-16.21.1
      myspell-ca_ES_valencia-20191016-16.21.1
      myspell-ca_FR-20191016-16.21.1
      myspell-ca_IT-20191016-16.21.1
      myspell-cs_CZ-20191016-16.21.1
      myspell-da_DK-20191016-16.21.1
      myspell-de-20191016-16.21.1
      myspell-de_AT-20191016-16.21.1
      myspell-de_CH-20191016-16.21.1
      myspell-de_DE-20191016-16.21.1
      myspell-el_GR-20191016-16.21.1
      myspell-en-20191016-16.21.1
      myspell-en_AU-20191016-16.21.1
      myspell-en_BS-20191016-16.21.1
      myspell-en_BZ-20191016-16.21.1
      myspell-en_CA-20191016-16.21.1
      myspell-en_GB-20191016-16.21.1
      myspell-en_GH-20191016-16.21.1
      myspell-en_IE-20191016-16.21.1
      myspell-en_IN-20191016-16.21.1
      myspell-en_JM-20191016-16.21.1
      myspell-en_MW-20191016-16.21.1
      myspell-en_NA-20191016-16.21.1
      myspell-en_NZ-20191016-16.21.1
      myspell-en_PH-20191016-16.21.1
      myspell-en_TT-20191016-16.21.1
      myspell-en_US-20191016-16.21.1
      myspell-en_ZA-20191016-16.21.1
      myspell-en_ZW-20191016-16.21.1
      myspell-es-20191016-16.21.1
      myspell-es_AR-20191016-16.21.1
      myspell-es_BO-20191016-16.21.1
      myspell-es_CL-20191016-16.21.1
      myspell-es_CO-20191016-16.21.1
      myspell-es_CR-20191016-16.21.1
      myspell-es_CU-20191016-16.21.1
      myspell-es_DO-20191016-16.21.1
      myspell-es_EC-20191016-16.21.1
      myspell-es_ES-20191016-16.21.1
      myspell-es_GT-20191016-16.21.1
      myspell-es_HN-20191016-16.21.1
      myspell-es_MX-20191016-16.21.1
      myspell-es_NI-20191016-16.21.1
      myspell-es_PA-20191016-16.21.1
      myspell-es_PE-20191016-16.21.1
      myspell-es_PR-20191016-16.21.1
      myspell-es_PY-20191016-16.21.1
      myspell-es_SV-20191016-16.21.1
      myspell-es_UY-20191016-16.21.1
      myspell-es_VE-20191016-16.21.1
      myspell-et_EE-20191016-16.21.1
      myspell-fr_BE-20191016-16.21.1
      myspell-fr_CA-20191016-16.21.1
      myspell-fr_CH-20191016-16.21.1
      myspell-fr_FR-20191016-16.21.1
      myspell-fr_LU-20191016-16.21.1
      myspell-fr_MC-20191016-16.21.1
      myspell-gu_IN-20191016-16.21.1
      myspell-he_IL-20191016-16.21.1
      myspell-hi_IN-20191016-16.21.1
      myspell-hr_HR-20191016-16.21.1
      myspell-hu_HU-20191016-16.21.1
      myspell-id-20191016-16.21.1
      myspell-id_ID-20191016-16.21.1
      myspell-it_IT-20191016-16.21.1
      myspell-lo_LA-20191016-16.21.1
      myspell-lt_LT-20191016-16.21.1
      myspell-lv_LV-20191016-16.21.1
      myspell-nb_NO-20191016-16.21.1
      myspell-nl_BE-20191016-16.21.1
      myspell-nl_NL-20191016-16.21.1
      myspell-nn_NO-20191016-16.21.1
      myspell-no-20191016-16.21.1
      myspell-pl_PL-20191016-16.21.1
      myspell-pt_AO-20191016-16.21.1
      myspell-pt_BR-20191016-16.21.1
      myspell-pt_PT-20191016-16.21.1
      myspell-ro-20191016-16.21.1
      myspell-ro_RO-20191016-16.21.1
      myspell-ru_RU-20191016-16.21.1
      myspell-sk_SK-20191016-16.21.1
      myspell-sl_SI-20191016-16.21.1
      myspell-sr-20191016-16.21.1
      myspell-sr_CS-20191016-16.21.1
      myspell-sr_Latn_CS-20191016-16.21.1
      myspell-sr_Latn_RS-20191016-16.21.1
      myspell-sr_RS-20191016-16.21.1
      myspell-sv_FI-20191016-16.21.1
      myspell-sv_SE-20191016-16.21.1
      myspell-te-20191016-16.21.1
      myspell-te_IN-20191016-16.21.1
      myspell-th_TH-20191016-16.21.1
      myspell-uk_UA-20191016-16.21.1
      myspell-vi-20191016-16.21.1
      myspell-vi_VN-20191016-16.21.1
      myspell-zu_ZA-20191016-16.21.1

   - SUSE Linux Enterprise Workstation Extension 12-SP4 (x86_64):

      bluez-cups-5.13-5.20.6
      bluez-cups-debuginfo-5.13-5.20.6
      bluez-debuginfo-5.13-5.20.6
      bluez-debugsource-5.13-5.20.6
      cmis-client-debuginfo-0.5.2-9.3.1
      cmis-client-debugsource-0.5.2-9.3.1
      libcmis-0_5-5-0.5.2-9.3.1
      libcmis-0_5-5-debuginfo-0.5.2-9.3.1
      libixion-0_15-0-0.15.0-13.12.1
      libixion-0_15-0-debuginfo-0.15.0-13.12.1
      libixion-debugsource-0.15.0-13.12.1
      libmwaw-0_3-3-0.3.15-7.15.1
      libmwaw-0_3-3-debuginfo-0.3.15-7.15.1
      libmwaw-debugsource-0.3.15-7.15.1
      liborcus-0_15-0-0.15.3-10.15.1
      liborcus-0_15-0-debuginfo-0.15.3-10.15.1
      liborcus-debugsource-0.15.3-10.15.1
      libreoffice-6.3.3.2-43.59.5
      libreoffice-base-6.3.3.2-43.59.5
      libreoffice-base-debuginfo-6.3.3.2-43.59.5
      libreoffice-base-drivers-postgresql-6.3.3.2-43.59.5
      libreoffice-base-drivers-postgresql-debuginfo-6.3.3.2-43.59.5
      libreoffice-calc-6.3.3.2-43.59.5
      libreoffice-calc-debuginfo-6.3.3.2-43.59.5
      libreoffice-calc-extensions-6.3.3.2-43.59.5
      libreoffice-debuginfo-6.3.3.2-43.59.5
      libreoffice-debugsource-6.3.3.2-43.59.5
      libreoffice-draw-6.3.3.2-43.59.5
      libreoffice-draw-debuginfo-6.3.3.2-43.59.5
      libreoffice-filters-optional-6.3.3.2-43.59.5
      libreoffice-gnome-6.3.3.2-43.59.5
      libreoffice-gnome-debuginfo-6.3.3.2-43.59.5
      libreoffice-impress-6.3.3.2-43.59.5
      libreoffice-impress-debuginfo-6.3.3.2-43.59.5
      libreoffice-librelogo-6.3.3.2-43.59.5
      libreoffice-mailmerge-6.3.3.2-43.59.5
      libreoffice-math-6.3.3.2-43.59.5
      libreoffice-math-debuginfo-6.3.3.2-43.59.5
      libreoffice-officebean-6.3.3.2-43.59.5
      libreoffice-officebean-debuginfo-6.3.3.2-43.59.5
      libreoffice-pyuno-6.3.3.2-43.59.5
      libreoffice-pyuno-debuginfo-6.3.3.2-43.59.5
      libreoffice-writer-6.3.3.2-43.59.5
      libreoffice-writer-debuginfo-6.3.3.2-43.59.5
      libreoffice-writer-extensions-6.3.3.2-43.59.5
      myspell-dictionaries-20191016-16.21.1
      myspell-lightproof-en-20191016-16.21.1
      myspell-lightproof-hu_HU-20191016-16.21.1
      myspell-lightproof-pt_BR-20191016-16.21.1
      myspell-lightproof-ru_RU-20191016-16.21.1

   - SUSE Linux Enterprise Software Development Kit 12-SP5 (aarch64 ppc64le s390x x86_64):

      bluez-debuginfo-5.13-5.20.6
      bluez-debugsource-5.13-5.20.6
      bluez-devel-5.13-5.20.6
      cmis-client-debuginfo-0.5.2-9.3.1
      cmis-client-debugsource-0.5.2-9.3.1
      gperf-3.1-19.4.1
      gperf-debuginfo-3.1-19.4.1
      gperf-debugsource-3.1-19.4.1
      libcmis-0_5-5-0.5.2-9.3.1
      libcmis-0_5-5-debuginfo-0.5.2-9.3.1
      libcmis-c-0_5-5-0.5.2-9.3.1
      libcmis-c-0_5-5-debuginfo-0.5.2-9.3.1
      libcmis-c-devel-0.5.2-9.3.1
      libcmis-devel-0.5.2-9.3.1
      libixion-debugsource-0.15.0-13.12.1
      libixion-devel-0.15.0-13.12.1
      libmwaw-debugsource-0.3.15-7.15.1
      libmwaw-devel-0.3.15-7.15.1
      liborcus-debugsource-0.15.3-10.15.1
      liborcus-devel-0.15.3-10.15.1

   - SUSE Linux Enterprise Software Development Kit 12-SP5 (x86_64):

      libreoffice-debuginfo-6.3.3.2-43.59.5
      libreoffice-debugsource-6.3.3.2-43.59.5
      libreoffice-sdk-6.3.3.2-43.59.5
      libreoffice-sdk-debuginfo-6.3.3.2-43.59.5

   - SUSE Linux Enterprise Software Development Kit 12-SP5 (noarch):

      libmwaw-devel-doc-0.3.15-7.15.1

   - SUSE Linux Enterprise Software Development Kit 12-SP4 (aarch64 ppc64le s390x x86_64):

      bluez-debuginfo-5.13-5.20.6
      bluez-debugsource-5.13-5.20.6
      bluez-devel-5.13-5.20.6
      cmis-client-debuginfo-0.5.2-9.3.1
      cmis-client-debugsource-0.5.2-9.3.1
      gperf-3.1-19.4.1
      gperf-debuginfo-3.1-19.4.1
      gperf-debugsource-3.1-19.4.1
      libcmis-0_5-5-0.5.2-9.3.1
      libcmis-0_5-5-debuginfo-0.5.2-9.3.1
      libcmis-c-0_5-5-0.5.2-9.3.1
      libcmis-c-0_5-5-debuginfo-0.5.2-9.3.1
      libcmis-c-devel-0.5.2-9.3.1
      libcmis-devel-0.5.2-9.3.1
      libixion-debugsource-0.15.0-13.12.1
      libixion-devel-0.15.0-13.12.1
      libmwaw-debugsource-0.3.15-7.15.1
      libmwaw-devel-0.3.15-7.15.1
      liborcus-debugsource-0.15.3-10.15.1
      liborcus-devel-0.15.3-10.15.1

   - SUSE Linux Enterprise Software Development Kit 12-SP4 (aarch64 x86_64):

      libreoffice-debuginfo-6.3.3.2-43.59.5
      libreoffice-debugsource-6.3.3.2-43.59.5
      libreoffice-sdk-6.3.3.2-43.59.5
      libreoffice-sdk-debuginfo-6.3.3.2-43.59.5

   - SUSE Linux Enterprise Software Development Kit 12-SP4 (noarch):

      libmwaw-devel-doc-0.3.15-7.15.1

   - SUSE Linux Enterprise Server 12-SP5 (aarch64 ppc64le s390x x86_64):

      bluez-5.13-5.20.6
      bluez-debuginfo-5.13-5.20.6
      bluez-debugsource-5.13-5.20.6
      libbluetooth3-5.13-5.20.6
      libbluetooth3-debuginfo-5.13-5.20.6

   - SUSE Linux Enterprise Server 12-SP4 (aarch64 ppc64le s390x x86_64):

      bluez-5.13-5.20.6
      bluez-debuginfo-5.13-5.20.6
      bluez-debugsource-5.13-5.20.6
      libbluetooth3-5.13-5.20.6
      libbluetooth3-debuginfo-5.13-5.20.6


References:

   https://www.suse.com/security/cve/CVE-2019-9853.html
   https://bugzilla.suse.com/1061210
   https://bugzilla.suse.com/1105173
   https://bugzilla.suse.com/1144522
   https://bugzilla.suse.com/1152684

_______________________________________________
sle-security-updates mailing list
sle-security-updates@lists.suse.com
http://lists.suse.com/mailman/listinfo/sle-security-updates

SUSE: 2020:0372-1 moderate: LibreOffice

February 7, 2020
An update that solves one vulnerability and has three fixes is now available

Summary

This update libreoffice and libraries fixes the following issues: LibreOffice was updated to 6.3.3 (jsc#SLE-8705), bringing many bug and stability fixes. More information for the 6.3 release at: https://wiki.documentfoundation.org/ReleaseNotes/6.3 Security issue fixed: - CVE-2019-9853: Fixed an issue where by executing macros, the security settings could have been bypassed (bsc#1152684). Other issues addressed: - Dropped disable-kde4 switch, since it is no longer known by configure - Disabled gtk2 because it will be removed in future releases - librelogo is now a standalone sub-package (bsc#1144522). - Partial fixes for an issue where Table(s) from DOCX showed wrong position or color (bsc#1061210). cmis-client was updated to 0.5.2: * Removed header for Uuid's sha1 header(bsc#1105173). * Fixed Google Drive login * Added support for Google Drive two-factor authentication * Fixed access to SharePoint root folder ...

Read the Full Advisory

References

#1061210 #1105173 #1144522 #1152684

Cross- CVE-2019-9853

Affected Products:

SUSE Linux Enterprise Workstation Extension 12-SP5

SUSE Linux Enterprise Workstation Extension 12-SP4

SUSE Linux Enterprise Software Development Kit 12-SP5

SUSE Linux Enterprise Software Development Kit 12-SP4

SUSE Linux Enterprise Server 12-SP5

SUSE Linux Enterprise Server 12-SP4

https://www.suse.com/security/cve/CVE-2019-9853.html

https://bugzilla.suse.com/1061210

https://bugzilla.suse.com/1105173

https://bugzilla.suse.com/1144522

https://bugzilla.suse.com/1152684

Severity
Announcement ID: SUSE-SU-2020:0372-1
Rating: moderate

Related News

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12
3 - 5 min read
The Linux kernel community recently issued an EOL announcement regarding the 6.11 kernel series, urging sysadmins to upgrade quickly to 6.12 . This
A Linux Admin
3 - 6 min read
As 2025 approaches, we Linux admins are facing new and often unseen cloud-native security obstacles. While skilled at mitigating known risks,
Leveraging Insights from the Linux Foundation
3 - 5 min read
The Linux Foundation's recent Census III report provides critical insights for Linux administrators, information security professionals, and anyone
Chrome 131 Released: Emergency Security Update Fixes Over a Dozen Significant Vulns
3 - 6 min read
Google recently unveiled a critical security update to their popular web browser, Google Chrome, addressing over a dozen significant security
From Wayland Fixes to Security Boosts: Examining Qt 6.8.1
3 - 6 min read
The recent Qt 6.8.1 release brings significant updates and improvements, strengthening its reputation as a secure and reliable application
Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins
3 - 6 min read
The Arch Linux 2024.12.01 ISO release marks an impressive milestone, offering cutting-edge updates that enhance functionality, streamline
Deck the Halls with Enhanced Security: Linux Kernel 6.13
3 - 5 min read
As Linux admins and infosec professionals prepare for the holiday season, there's much cause for celebration this year! Linus Torvalds recently made
Lessons from Bootkitty: Securing Linux Systems Against UEFI Intrusions
3 - 5 min read
New Linux security threats mark critical junctures that challenge existing policies and test security protocols to their limit. One such milestone

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved