tl;dr: upgrade to 7.1.8 or 7.2.4 The install sets of LibreOffice as provided by TDF include a bundled copy of Mozilla's NSS library. Before 7.1.8/7.2.4 the bundled NSS is affected by:
CVE-2021-43527 Memory corruption via DER-encoded DSA and RSA-PSS signatures https://www.mozilla.org/en-US/security/advisories/mfsa2021-51/#CVE-2021-43527 https://googleprojectzero.blogspot.com/2021/12/this-shouldnt-have-happened.html -- To unsubscribe e-mail to: discuss+unsubscr...@documentfoundation.org Problems? https://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/ Posting guidelines + more: https://wiki.documentfoundation.org/Netiquette List archive: https://listarchives.documentfoundation.org/www/discuss/ Privacy Policy: https://www.documentfoundation.org/privacy
