desktop-packages team mailing list archive

Thread
Date

[Bug 1380711] Re: security CVE 2014-3575

To: desktop-packages@xxxxxxxxxxxxxxxxxxx
From: Björn Michaelsen <bjoern.michaelsen@xxxxxxxxxxxxx>
Date: Mon, 10 Nov 2014 15:54:22 -0000
Reply-to: Bug 1380711 <1380711@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Note that trusty already had been updated to 4.2.6~rc3 (aka 4.2.6.3 aka
4.2.6-secfix) thus already was fixed. Utopic and Vivid had versions
higher than 4.3.1 at release and thus were never vulnerable.

-- 
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to libreoffice in Ubuntu.
https://bugs.launchpad.net/bugs/1380711

Title:
  security CVE 2014-3575

Status in “libreoffice” package in Ubuntu:
  Fix Released

Bug description:
  dear mantainers, as you can see here
  http://www.securitytracker.com/id/1030804, libreoffice earlier than
  4.2.6 secfix1 is vulnerable, as apache openoffice earlier than 4.1.1
  to CVE 2014-3575, if i understan correctly the report.

  thank's for you work.
  best regards
  Tiziano Casavecchia

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libreoffice/+bug/1380711/+subscriptions

References

[Bug 1380711] [NEW] security CVE 2014-3575
From: tiziano.casavecchia, 2014-10-13