First published: Wed Jul 17 2019(Updated: )
Last updated 24 July 2024
Credit: security@documentfoundation.org
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/libreoffice | <6.2.5 | 6.2.5 |
debian/libreoffice | 1:7.0.4-4+deb11u10 4:7.4.7-1+deb12u4 4:24.2.5-4 4:24.2.6-1 | |
The Document Foundation LibreOffice | <6.2.5 | |
Ubuntu Linux | =16.04 | |
Ubuntu Linux | =18.04 | |
Ubuntu Linux | =19.04 | |
Fedoraproject Fedora | =29 | |
Fedoraproject Fedora | =30 | |
Debian GNU/Linux | =8.0 | |
openSUSE | =15.0 | |
openSUSE | =15.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this security flaw is CVE-2019-9849.
CVE-2019-9849 has a severity level of medium with a CVSS score of 4.3.
To fix the CVE-2019-9849 vulnerability in LibreOffice, you should update to version 6.0.7-0ubuntu0.18.04.8 (for Ubuntu 18.04) or version 6.2.5-0ubuntu0.19.04.1 (for Ubuntu 19.04) or apply the appropriate remedy provided by your Linux distribution.
The default mode in LibreOffice that includes remote resources within a document is not the 'stealth mode'.
The CVE-2019-9849 vulnerability was discovered and reported by security researchers.