gentoo auto-resync : 21:02:2024 - 17:40:23

author: V3n3RiX <venerix@koprulu.sector> 2024-02-21 17:40:23 +0000
committer: V3n3RiX <venerix@koprulu.sector> 2024-02-21 17:40:23 +0000
commit: f2d1966a40070fb5ba3279db49b8435c7c143802 (patch)
tree: c22ee074b9798b0ad569fb20e1658ddb9de8aee3 /metadata/glsa
parent: eb3b53b5fd521edc0e4a7d611e76898732a63a81 (diff)
5 files changed, 71 insertions, 17 deletions
diff --git a/metadata/glsa/Manifest b/metadata/glsa/Manifest
index 00802cfe936c..4b70b76fae7b 100644
--- a/metadata/glsa/Manifest
+++ b/metadata/glsa/Manifest
@@ -1,23 +1,23 @@
 -----BEGIN PGP SIGNED MESSAGE-----
 Hash: SHA512
 
-MANIFEST Manifest.files.gz 568062 BLAKE2B 63354e36b00357ecbdd68ddac0a4e722f998e8aade0b5025f1a84caf5470d97f6b2ce7020f42bbd802a1beb63f88f2e3287b060dbc4a695da224e6ab93006e93 SHA512 106f89b00b29ed2c754a2a2fe054b6b0b6f2413fdf8d113f7ddc7bf427a1474d7f8e333da8fd87a95983c6a19f014980c8f0c2c7ae9b46e4e7091b87323240fc
-TIMESTAMP 2024-02-21T11:10:09Z
+MANIFEST Manifest.files.gz 568221 BLAKE2B 8f70bf43815708ae4e34084aeeb908cbb07c74f33084a5345ae24a2a1d88665ee206e530983bb7b10b059cf4f0cc00d0b4aa10090458fe84f565d50f5c1d6fe8 SHA512 08ebbb1997fa25a896326e1231819e34a12f02b0554afb445aa41a5a47fb79fa02b9ff381be55d26790e6b3e665e1a44794ecd7f40c313404336dc49092f2784
+TIMESTAMP 2024-02-21T17:10:12Z
 -----BEGIN PGP SIGNATURE-----
 
-iQKTBAEBCgB9FiEE4dartjv8+0ugL98c7FkO6skYklAFAmXV2hFfFIAAAAAALgAo
+iQKTBAEBCgB9FiEE4dartjv8+0ugL98c7FkO6skYklAFAmXWLnRfFIAAAAAALgAo
 aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEUx
 RDZBQkI2M0JGQ0ZCNEJBMDJGREYxQ0VDNTkwRUVBQzkxODkyNTAACgkQ7FkO6skY
-klBGPQ//VXV1M2lg7i1BuoH0pDO7bdGhmoRuqXbDmwNsdWaipU3Ks6laZmBetVBt
-3OKHbWDGEio0FQgy8UvaUC/qKB7iELIw/7tZnwi3pOimZohk2Vz462WkOTWXQViv
-fYaVJIFprijoU7q+zxZIGPoI8tCjPqG/oaQ4Vc+lWZOqnNzIVte6iwoH9xVylgTr
-LBShMVJP/PTUxdA9t23yU6Ml4AqrxbBj+D/w+di9leg+wIrHPUPti+cq3FKVnhOu
-cSQgXdUFxRcWWKqgrSKHzgzsQHe7jkFM35SCcDFw8b7ItNQAMFV5xCC40UpjUY3i
-+hLTd4DitPCdL14ns8p7RD/B2PtoDsJVKVb5Nm9VBV58CabJMvfEZ7GR07hnKtnC
-E44iru0t0BA/Awtw0XIrl/KMr+Ah92ArPoyMpYu0/qizrwEUcO7UJBOrUgVEkv7v
-C/MdxC5/8ziNNuHG91AtynTHfvAsh/b9W4PcPDVC6ijBVtnS7fQwwz8bwdyH/nMZ
-wr/k9lhKRIiZoZbF5yWqQsu+w77f+Nwm91FQW7moWgn/0oUKwcUxfxwuWK/GQ3Pv
-UtBlXprBmElHskZAwoXZqmUljNdg4o6PcUXWyHXDArC1t0yV5DN+BcZfeAbY68ju
-owQ6qXyCtDoq/uiAweMKJwdLGmU90A9+XFlpwPT0Fq0RNlFkm1M=
-=+9Hr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+=Tvzs
 -----END PGP SIGNATURE-----
diff --git a/metadata/glsa/Manifest.files.gz b/metadata/glsa/Manifest.files.gz
index 2352cc66c21e..c19e1c398af6 100644
--- a/metadata/glsa/Manifest.files.gz
+++ b/metadata/glsa/Manifest.files.gz
diff --git a/metadata/glsa/glsa-202402-29.xml b/metadata/glsa/glsa-202402-29.xml
new file mode 100644
index 000000000000..fd8acde0a13a
--- /dev/null
+++ b/metadata/glsa/glsa-202402-29.xml
@@ -0,0 +1,54 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd">
+<glsa id="202402-29">
+    <title>LibreOffice: Multiple Vulnerabilities</title>
+    <synopsis>Multiple vulnerabilities have been found in LibreOffice, the worst of which could result in user-assisted code execution.</synopsis>
+    <product type="ebuild">libreoffice,libreoffice-bin</product>
+    <announced>2024-02-21</announced>
+    <revised count="1">2024-02-21</revised>
+    <bug>919894</bug>
+    <access>remote</access>
+    <affected>
+        <package name="app-office/libreoffice" auto="yes" arch="*">
+            <unaffected range="ge">7.5.9.2</unaffected>
+            <vulnerable range="lt">7.5.9.2</vulnerable>
+        </package>
+        <package name="app-office/libreoffice-bin" auto="yes" arch="*">
+            <unaffected range="ge">7.5.9.2</unaffected>
+            <vulnerable range="lt">7.5.9.2</vulnerable>
+        </package>
+    </affected>
+    <background>
+        <p>LibreOffice is a powerful office suite; its clean interface and powerful tools let you unleash your creativity and grow your productivity.</p>
+    </background>
+    <description>
+        <p>Multiple vulnerabilities have been discovered in LibreOffice. Please review the CVE identifiers referenced below for details.</p>
+    </description>
+    <impact type="high">
+        <p>Please review the referenced CVE identifiers for details.</p>
+    </impact>
+    <workaround>
+        <p>There is no known workaround at this time.</p>
+    </workaround>
+    <resolution>
+        <p>All LibreOffice binary users should upgrade to the latest version:</p>
+        
+        <code>
+          # emerge --sync
+          # emerge --ask --oneshot --verbose ">=app-office/libreoffice-bin-7.5.9.2"
+        </code>
+        
+        <p>All LibreOffice users should upgrade to the latest version:</p>
+        
+        <code>
+          # emerge --sync
+          # emerge --ask --oneshot --verbose ">=app-office/libreoffice-7.5.9.2"
+        </code>
+    </resolution>
+    <references>
+        <uri link="https://nvd.nist.gov/vuln/detail/CVE-2023-6185">CVE-2023-6185</uri>
+        <uri link="https://nvd.nist.gov/vuln/detail/CVE-2023-6186">CVE-2023-6186</uri>
+    </references>
+    <metadata tag="requester" timestamp="2024-02-21T16:46:04.755022Z">ajak</metadata>
+    <metadata tag="submitter" timestamp="2024-02-21T16:46:04.757962Z">graaff</metadata>
+</glsa>
+\ No newline at end of file
diff --git a/metadata/glsa/timestamp.chk b/metadata/glsa/timestamp.chk
index 2668bc9cca4d..6f9b5a95ea7a 100644
--- a/metadata/glsa/timestamp.chk
+++ b/metadata/glsa/timestamp.chk
@@ -1 +1 @@
-Wed, 21 Feb 2024 11:10:05 +0000
+Wed, 21 Feb 2024 17:10:09 +0000
diff --git a/metadata/glsa/timestamp.commit b/metadata/glsa/timestamp.commit
index 970b20578ebf..aba5d7f04e40 100644
--- a/metadata/glsa/timestamp.commit
+++ b/metadata/glsa/timestamp.commit
@@ -1 +1 @@
-9df376ebb50854c82bdbbc1e4f71d408e449fc54 1708323022 2024-02-19T06:10:22+00:00
+298891ab7459c571f1ff699a7004c22ee0cb3595 1708533988 2024-02-21T16:46:28+00:00
author	V3n3RiX <venerix@koprulu.sector>	2024-02-21 17:40:23 +0000
committer	V3n3RiX <venerix@koprulu.sector>	2024-02-21 17:40:23 +0000
commit	f2d1966a40070fb5ba3279db49b8435c7c143802 (patch)
tree	c22ee074b9798b0ad569fb20e1658ddb9de8aee3 /metadata/glsa
parent	eb3b53b5fd521edc0e4a7d611e76898732a63a81 (diff)