https://bz.apache.org/ooo/show_bug.cgi?id=126896
Issue ID: 126896
Issue Type: DEFECT
Summary: bundled curl version 7.19.7 has many vulnerabilities
Product: Build Tools
Version: 4.2.0-dev
Hardware: All
OS: All
Status: CONFIRMED
Severity: Normal
Priority: P5 (lowest)
Component: external prerequisites
Assignee: [email protected]
Reporter: [email protected]
Created attachment 85374
--> https://bz.apache.org/ooo/attachment.cgi?id=85374&action=edit
patch to ugprade bundled curl to version 7.48.0
The curl-7.19.7 software bundled with Openoffice has these security
vulnerabilities:
CVE-2010-0734
CVE-2011-2192
CVE-2013-2174
CVE-2014-3143
CVE-2014-3144
CVE-2014-3145
CVE-2014-3148
CVE-2014-8150
CVE-2015-3153
CVE-2016-0755
The attached patch upgrades curl to version 7.48.0 which has no
publicly disclosed vulnerabilities at this time.
This version of curl appears to require no patches to integrate it
with OpenOffice.
--
You are receiving this mail because:
You are the assignee for the issue.
