Currently there is LibreOffice 4.4.5 in SFE.opencsw for only Hipster and
Solaris 11. We could releases it for OI 151a9 but there seemed to be no
interest.
Both CVEs mentioned in Ken's post say the vulnerabilities exist in
"LibreOffice before 4.4.5" so current version from sfe.opencsw should be
On Fri, 25 Dec 2015, Nikola M wrote:
Also, information about CVEs that are not released yet does not requre to be
public before package maintainer fixes it.
That is what I think understand thus far, am I right?
This depends on who reports and manages it. To get advance notice of
CVEs then
On 12/25/15 07:15 PM, Thomas Wagner wrote:
Hi Ken,
we have version 4.4.5 in the binary repo.
I couldn't find a location with a patch for this CVE; so if anyone
has better luck, I would integrate it and rebuild the packages.
I think one needs registration in front of Operating system distribut
Hi,
Should this be the subject of a post on the OI website ?
Better visibility of such security announcements could be appreciated by
users.
I can create a category with a dedicated page for such information if there
is interest.
Best regards
Aurélien
On Fri, Dec 25, 2015 at 7:15 PM, Thomas Wagne
Hi Ken,
we have version 4.4.5 in the binary repo.
I couldn't find a location with a patch for this CVE; so if anyone
has better luck, I would integrate it and rebuild the packages.
Until then, users may not blindly click on links in documents they
don't trust the source.
Regards,
Thomas
On Tue
Security update: Update to LibreOffice 4.4.7
Location: OI-SFE packaging
LibreOffice is an open source, community-developed office productivity
suite. It includes key desktop applications, such as a word processor, a
spreadsheet, a presentation manager, a formula editor, and a drawing
program. Libre