Olá Roberto, Muito grata pelo seu email.
A TDF já anunciou isso no blog internacional no sábado 25: http://blog.documentfoundation.org/2015/04/25/the-document-foundation-announces-libreoffice-4-3-7/ A postagem traduzida por nós estará disponível amanhã. Saudações, Eliane Domingos de Sousa Comunidade LibreOffice Brasil Membro do Conselho Diretor da TDF Brazilian LibreOffice Community TDF Member of the Board of Directors Experimente o sistema de perguntas e respostas da Comunidade LibreOffice Brasil:http://ask.libreoffice.org/pt-br/questions/ http://pt-br.libreoffice.org EDX Coworking & Business Club Seu espaço de trabalho e negócios no centro do Rio de Janeiro http://www.edxcoworking.com.br On 26-04-2015 12:41, Roberto Raimondo Junior (GMAIL) wrote: > Recebi esse e-mail após ter me cadastrado > > -------- Forwarded Message -------- > Assunto: [libreoffice-users] security warning AOO > Data: Sun, 26 Apr 2015 18:31:31 +0900 > De: rost52 <bugquestcon...@online.de> > Para: us...@global.libreoffice.org <us...@global.libreoffice.org> > > > > Today, following mail was distributed from > annou...@openoffice.apache.org. > Can LibO users face the same threat? > > QUOTE > > CVE-2015-1774 > > OpenOffice HWP Filter Remote Code Execution and Denial of Service > Vulnerability > > A vulnerability in OpenOffice's HWP filter allows attackers to cause a > denial of service (memory corruption and application crash) or possibly > execution of arbitrary code by preparing specially crafted documents in > the HWP document format. > > Severity: Important > > Vendor: The Apache Software Foundation > > Versions Affected: > > All Apache OpenOffice versions 4.1.1 and older are affected. > > Mitigation: > > Apache OpenOffice users are advised to remove the problematic library in > the "program" folder of their OpenOffice installation. On Windows it is > named "hwp.dll", on Mac it is named "libhwp.dylib" and on Linux it is > named "libhwp.so". Alternatively the library can be renamed to anything > else e.g. "hwp_renamed.dll". > This mitigation will drop AOO's support for documents created in "Hangul > Word Processor" versions from 1997 or older. Users of such documents are > advised to convert their documents to other document formats such as > OpenDocument before doing so. > > Apache OpenOffice aims to fix the vulnerability in version 4.1.2. > > Credits: > > Thanks to an anonymous contributor working with VeriSign iDefense Labs. > > UNQUOTE > > > -- Você está recebendo e-mails da lista usuarios@pt-br.libreoffice.org # Informações sobre os comandos disponíveis (em inglês): mande e-mail vazio para usuarios+unsubscr...@pt-br.libreoffice.org # Cancelar sua assinatura: mande e-mail vazio para: usuarios+unsubscr...@pt-br.libreoffice.org # Arquivo de mensagens: http://listarchives.libreoffice.org/pt-br/usuarios/
