On Fri, Jan 9, 2009 at 7:58 AM, Gordon <[email protected]> wrote: > Mark Knecht wrote: >> >> On Fri, Jan 9, 2009 at 7:47 AM, Gordon <[email protected]> wrote: >>> >>> Mark Knecht wrote: >>>> >>>> On Fri, Jan 9, 2009 at 6:17 AM, M Henri Day <[email protected]> wrote: >>>>> >>>>> 2009/1/9 Gordon <[email protected]> >>>>> >>>>>> I have version 3 installed. >>>>>> Kaspersky shows this vulnerability: >>>>>> http://www.viruslist.com/en/advisories/30599 >>>>>> The solution is to upgrade to 2.4.1!!! >>>>>> Does V 3 not fix this vulnerability? >>>>> >>>>> The version for which the vulnerability ( an «OpenOffice >>>>> "rtl_allocateMemory()" Integer Overflow Vulnerability») was reported >>>>> (on >>>>> 10 >>>>> June 2008) is, according to the above link «OpenOffice.org 2.x». I >>>>> understand this to have been fixed not only in 2.4.1 but also in 3.x >>>>> versions, but it would indeed be pleasant to receive a confirmation.... >>>>> >>>>> Henri >>>>> >>>> Kaspersky is a pretty responsive company, at least through their user >>>> forums. Someone might want to post a question about this there. >>>> Probably would have an answer in a few hours. >>> >>> Have done so - we'll see what responses there are. >>> >> >> Let us know the answer. >> >> I use Kaspersky myself. I've not seen this message about Open Office. >> >> Cheers, >> Mark > > It only came up when doing a full scan.... >
And I note that I have 2.4.1 installed anyway so I wouldn't have seen it I suppose. Good luck, Mark
