Chiwopsezo (CVE-2022-3140) chadziwika muofesi yaulere ya LibreOffice, yomwe imalola kusungitsa zolembedwa mopondereza pomwe ulalo wokonzedwa mwapadera mu chikalata udina kapena chochitika china chikayambika mukugwira ntchito ndi chikalata. Vutoli lidakhazikitsidwa muzosintha za LibreOffice 7.3.6 ndi 7.4.1.
Kusatetezekaku kumadza chifukwa chowonjezera chithandizo cha pulogalamu yowonjezera yoyimba foni ya 'vnd.libreoffice.command', ya LibreOffice. Dongosololi litha kugwiritsidwanso ntchito mu URIs omwe amagwiritsidwa ntchito kuphatikiza LibreOffice ndi seva ya MS SharePoint. Wowukira atha kugwiritsa ntchito ma URI oterowo kupanga maulalo omwe amatcha ma macros aliwonse amkati ndi mikangano yosamveka. Chochitika m'chikalata chikadindidwa kapena kutsegulidwa, maulalo oterowo atha kugwiritsidwa ntchito kuyendetsa zolemba popanda kuwonetsa chenjezo kwa wogwiritsa ntchito.
Source: opennet.ru