If updating to the latest version is not possible for any reason, you can always opt to completely disable the macro features on your office suite, or avoid trusting any documents containing macros. If you're using Linux and the aforementioned versions aren't available on your distribution's package manager yet, you are advised to download the "deb", or "rpm" package from the Download center or build LibreOffice from source. Since neither of these two applications offer auto-updating, you should do it manually by downloading the latest version from the respective download centers - LibreOffice, OpenOffice. For OpenOffice, that would be 4.1.10 and later, and for LibreOffice, 7.0.5 or 7.1.1 and later. For OpenOffice, that would be 4.1.10 and later, and for LibreOffice, 7.0.5 or 7.1.1 and later. LibreOffice, OpenOffice bug allows hackers to spoof signed docs.
#LIBREOFFICE OPENOFFICE ALLOWS HACKERS TO SPOOF UPGRADE#
If you're using either of the open-source office suites, you're advised to upgrade to the latest available version immediately. Transnational criminal organizations, criminal hackers, are only getting better. NEWS Microsoft adds tamper protection to Windows 11 security baseline 9-Oct-21. LibreOffice, OpenOffice bug allows hackers to spoof signed docs 11-Oct-21. NEWS Report: DDoS attacks increasing year on year as cybercriminals demand extortionate payouts 10-Jan-22. The same flaw impacts LibreOffice, which is a fork of OpenOffice spawned from the main project over a decade ago, and for their project is tracked as CVE-2021-25635. URL Parsing Bugs Allow DoS, RCE, Spoofing & More 10-Jan-22. BleepingComputer reports: The discovery of the flaw, which is tracked as CVE-2021-41832 for OpenOffice, was the work of four researchers at the Ruhr University Bochum. Although the severity of the flaw is classified as moderate, the implications could be dire.
LibreOffice and OpenOffice have pushed updates to address a vulnerability that makes it possible for an attacker to manipulate documents to appear as signed by a trusted source.
0 kommentar(er)
