A flaw was found in the way LibreOffice processed certain HWP documents. An attacker able to trick a user into opening a specially crafted HWP document could use this flaw to execute arbitrary code on the system with the privileges of the user opening that document. External References: http://www.openoffice.org/security/cves/CVE-2015-1774.html http://www.libreoffice.org/about-us/security/advisories/cve-2015-1774
Created libreoffice tracking bugs for this issue: Affects: fedora-all [bug 1216044]
libreoffice-4.3.7.2-3.fc21 has been pushed to the Fedora 21 stable repository. If problems still persist, please make note of it in this bug report.
libreoffice-4.2.8.2-8.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report.
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2015:1458 https://rhn.redhat.com/errata/RHSA-2015-1458.html