UbuntuUpdates.org

Package "libreoffice-help-sl"

Name: libreoffice-help-sl

Description:

office productivity suite -- Slovenian help
Latest version: 1:7.3.7-0ubuntu0.22.04.11
Release: jammy (22.04)
Level: updates
Repository: main
Head package: libreoffice
Homepage: http://www.libreoffice.org

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "libreoffice-help-sl"

All arch deb package
APT INSTALL

Other versions of "libreoffice-help-sl" in Jammy

Repository Area Version
base main 1:7.3.2-0ubuntu2
security main 1:7.3.7-0ubuntu0.22.04.11
backports main 4:25.8.6-0ubuntu0.25.10.1~bpo22.04.1
PPA: LibreOffice 4:26.2.2.2-0ubuntu0.22.04.1~lo2

Changelog

Version: 1:7.3.7-0ubuntu0.22.04.11 2026-05-29 02:07:33 UTC

  libreoffice (1:7.3.7-0ubuntu0.22.04.11) jammy-security; urgency=medium

  * SECURITY UPDATE: Heap Buffer Overflow in AgileEngine
    - debian/patches/CVE-2026-4430.patch: Conform AlignEngine parsing to
      what section 2.3.4.10 of the spec has
    - CVE-2026-4430

 -- Rico Tzschichholz <email address hidden> Wed, 13 May 2026 09:44:03 +0200
Source diff to previous version
CVE-2026-4430 Out-of-bounds write vulnerability in The Document Foundation LibreOffice via crafted OOXML documents with mismatched encryption salt parameters. Thi

Version: 1:7.3.7-0ubuntu0.22.04.10 2025-05-08 19:07:38 UTC

  libreoffice (1:7.3.7-0ubuntu0.22.04.10) jammy-security; urgency=medium

  * SECURITY UPDATE: PDF signature forgery with adbe.pkcs7.sha1 SubFilter
    - debian/patches/CVE-2025-2866.patch: Improve adbe.pkcs7.sha1 signature
      verification
    - CVE-2025-2866

 -- Rico Tzschichholz <email address hidden> Mon, 05 May 2025 17:20:55 +0200
Source diff to previous version
CVE-2025-2866 Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF Signature Spoofing by Improper Validation. In the affect

Version: 1:7.3.7-0ubuntu0.22.04.9 2025-03-10 21:07:10 UTC

  libreoffice (1:7.3.7-0ubuntu0.22.04.9) jammy-security; urgency=medium

  * SECURITY UPDATE: Macro URL arbitrary script execution
    - debian/patches/CVE-2025-1080.patch: Filter out more unwanted command
      URIs
    - CVE-2025-1080

 -- Rico Tzschichholz <email address hidden> Thu, 06 Mar 2025 08:58:09 +0100
Source diff to previous version
CVE-2025-1080 LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server. An additional scheme 'vnd.libreoffice

Version: 1:7.3.7-0ubuntu0.22.04.8 2025-01-27 21:07:20 UTC

  libreoffice (1:7.3.7-0ubuntu0.22.04.8) jammy-security; urgency=medium

  * SECURITY UPDATE: Path traversal leading to arbitrary .ttf file write
    - debian/patches/CVE-2024-12425.patch: be conservative on allowed temp
      font names
    - CVE-2024-12425
  * SECURITY UPDATE: URL fetching can be used to exfiltrate arbitrary INI
      file values and environment variables
    - debian/patches/CVE-2024-12426-1.patch: consider VndSunStarExpand an
      exotic protocol
    - debian/patches/CVE-2024-12426-2.patch: look at 'embedded' protocols too
    - CVE-2024-12426
    - debian/patches/CVE-2024-12426-3.patch: Fix check for further exotic
      protocols

 -- Rico Tzschichholz <email address hidden> Thu, 23 Jan 2025 14:54:13 +0100
Source diff to previous version
CVE-2024-12425 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in The Document Foundation LibreOffice allows Absolute P
CVE-2024-12426 Exposure of Environmental Variables and arbitrary INI file values to an Unauthorized Actor vulnerability in The Document Foundation LibreOffice.

Version: 1:7.3.7-0ubuntu0.22.04.7 2024-09-19 17:07:03 UTC

  libreoffice (1:7.3.7-0ubuntu0.22.04.7) jammy-security; urgency=medium

  * SECURITY UPDATE: Signatures in "repair mode" should not be trusted
    - debian/patches/CVE-2024-7788.patch: sfx2: SfxObjectShell should
      not trust any signature on repaired package
    - CVE-2024-7788

 -- Rico Tzschichholz <email address hidden> Wed, 18 Sep 2024 17:10:51 +0200
CVE-2024-7788 Improper Digital Signature InvalidationĀ  vulnerability in Zip Repair Mode of The Document Foundation LibreOffice allows Signature forgery vulnerabili


About   -   Send Feedback to @ubuntu_updates