Bug 1850226 (CVE-2020-12802)

Summary: CVE-2020-12802 libreoffice: 'stealth mode' remote resource restrictions bypass
Product: [Other] Security Response Reporter: Michael Kaplan <mkaplan>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED ERRATA QA Contact:
Severity: low Docs Contact:
Priority: low    
Version: unspecifiedCC: caolanm, dtardon, erack, sbergman
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: libreoffice 6.4.4 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-11-04 02:26:12 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1850227, 1850855, 1850856    
Bug Blocks: 1850229    

Description Michael Kaplan 2020-06-23 18:51:13 UTC 
LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources. This mode is not the default mode, but can be enabled by users who want to disable LibreOffice's ability to include remote resources within a document. A flaw existed where remote graphic links loaded from docx documents were omitted from this protection prior to version 6.4.4. This issue affects: The Document Foundation LibreOffice versions prior to 6.4.4.

References:

https://www.libreoffice.org/about-us/security/advisories/CVE-2020-12802
Comment 1 Michael Kaplan 2020-06-23 18:51:28 UTC 
Created libreoffice tracking bugs for this issue:

Affects: fedora-all [bug 1850227]
Comment 3 Huzaifa S. Sidhpurwala 2020-06-25 04:20:54 UTC 
External References:

https://www.libreoffice.org/about-us/security/advisories/CVE-2020-12802
Comment 5 Product Security DevOps Team 2020-11-04 02:26:12 UTC 
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2020-12802
Comment 6 errata-xmlrpc 2020-11-04 02:29:40 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2020:4628 https://access.redhat.com/errata/RHSA-2020:4628