Bugzilla – Bug 1201868
VUL-0: CVE-2022-26305: libreoffice: Execution of Untrusted Macros Due to Improper Certificate Validation
Last modified: 2022-12-20 11:35:15 UTC
CVE-2022-26305 An Improper Certificate Validation vulnerability in LibreOffice existed where determining if a macro was signed by a trusted author was done by only matching the serial number and issuer string of the used certificate with that of a trusted certificate. This is not sufficient to verify that the macro was actually signed with the certificate. An adversary could therefore create an arbitrary certificate with a serial number and an issuer string identical to a trusted certificate which LibreOffice would present as belonging to the trusted author, potentially leading to the user to execute arbitrary code contained in macros improperly trusted. This issue affects: The Document Foundation LibreOffice 7.2 versions prior to 7.2.7; 7.3 versions prior to 7.3.1. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-26305 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26305 https://www.libreoffice.org/about-us/security/advisories/cve-2022-26305
Affected: - SUSE:SLE-12-SP5:Update/libreoffice 7.2.5.1 - SUSE:SLE-15-SP3:Update/libreoffice 7.2.5.1 Not Affected: - openSUSE:Factory/libreoffice 7.3.4.2
SUSE-SU-2022:3602-1: An update that fixes three vulnerabilities, contains one feature is now available. Category: security (important) Bug References: 1201868,1201872,1203209 CVE References: CVE-2022-26305,CVE-2022-26307,CVE-2022-3140 JIRA References: SLE-23448 Sources used: SUSE Linux Enterprise Workstation Extension 12-SP5 (src): libreoffice-7.3.6.2-48.28.1 SUSE Linux Enterprise Software Development Kit 12-SP5 (src): libreoffice-7.3.6.2-48.28.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2022:3650-1: An update that fixes three vulnerabilities, contains one feature is now available. Category: security (important) Bug References: 1201868,1201872,1203209 CVE References: CVE-2022-26305,CVE-2022-26307,CVE-2022-3140 JIRA References: SLE-23447 Sources used: openSUSE Leap 15.4 (src): libreoffice-7.3.6.2-150300.14.22.24.2 openSUSE Leap 15.3 (src): libreoffice-7.3.6.2-150300.14.22.24.2 SUSE Linux Enterprise Workstation Extension 15-SP4 (src): libreoffice-7.3.6.2-150300.14.22.24.2 SUSE Linux Enterprise Workstation Extension 15-SP3 (src): libreoffice-7.3.6.2-150300.14.22.24.2 SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP4 (src): libreoffice-7.3.6.2-150300.14.22.24.2 SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 (src): libreoffice-7.3.6.2-150300.14.22.24.2 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
done