On Wed, Oct 21, 2009 at 11:10:29AM +0800, Wei Min Teo wrote: > Are there any known security flaws in the latest openoffice version that has > been disclosed?
EPARSE. When it's disclosed it's on that page. [1] *Of course* not yet disclosed issues are not there. That's the point of "coordinated disclosure" > I only seem to be able to find bulletin page for the vulnerabilites fixes for > all the different versions. And what is bad with that? It described when a issue was disclosed and fixed (OOo does not do extra releases for security stuff but just discloses it with their next release) Regards, Rene P.S: WTF are you hiding that post below Heiners Mercurial Post? God, when do people learn that it is bad to reply against a random post to send a new mail as proper MUAs will just sort the mail below the thread then... [1] That is for issues which go the proper way. CVE-2009-3569, CVE-2009-3570, CVE-2009-3571 are disclosed without coodination with any OOo entity in the way that there are infos, but there is no infos whatsoever what the issues are. Bad people just wanting to make $$$s of selling exploits.... So they neither are mentioned on that page either (they're not yet fixed anywhere anyway...) (It's public anyway, no reason to hide this) --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
