Não esquecer de atualizar a página:
http://www.libreoffice.org/about-us/security/advisories/
2015-04-26 16:37 GMT-03:00 Eliane Domingos de Sousa <
elianedomingos@libreoffice.org>:
Olá Roberto,
Muito grata pelo seu email.
A TDF já anunciou isso no blog internacional no sábado 25:
http://blog.documentfoundation.org/2015/04/25/the-document-foundation-announces-libreoffice-4-3-7/
A postagem traduzida por nós estará disponível amanhã.
Saudações,
Eliane Domingos de Sousa
Comunidade LibreOffice Brasil
Membro do Conselho Diretor da TDF
Brazilian LibreOffice Community
TDF Member of the Board of Directors
Experimente o sistema de perguntas e respostas da Comunidade LibreOffice
Brasil:http://ask.libreoffice.org/pt-br/questions/
http://pt-br.libreoffice.org
EDX Coworking & Business Club
Seu espaço de trabalho e negócios no centro do Rio de Janeiro
http://www.edxcoworking.com.br
On 26-04-2015 12:41, Roberto Raimondo Junior (GMAIL) wrote:
Recebi esse e-mail após ter me cadastrado
-------- Forwarded Message --------
Assunto: [libreoffice-users] security warning AOO
Data: Sun, 26 Apr 2015 18:31:31 +0900
De: rost52 <bugquestcontri@online.de>
Para: users@global.libreoffice.org <users@global.libreoffice.org>
Today, following mail was distributed from
announce@openoffice.apache.org.
Can LibO users face the same threat?
QUOTE
CVE-2015-1774
OpenOffice HWP Filter Remote Code Execution and Denial of Service
Vulnerability
A vulnerability in OpenOffice's HWP filter allows attackers to cause a
denial of service (memory corruption and application crash) or possibly
execution of arbitrary code by preparing specially crafted documents in
the HWP document format.
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected:
All Apache OpenOffice versions 4.1.1 and older are affected.
Mitigation:
Apache OpenOffice users are advised to remove the problematic library in
the "program" folder of their OpenOffice installation. On Windows it is
named "hwp.dll", on Mac it is named "libhwp.dylib" and on Linux it is
named "libhwp.so". Alternatively the library can be renamed to anything
else e.g. "hwp_renamed.dll".
This mitigation will drop AOO's support for documents created in "Hangul
Word Processor" versions from 1997 or older. Users of such documents are
advised to convert their documents to other document formats such as
OpenDocument before doing so.
Apache OpenOffice aims to fix the vulnerability in version 4.1.2.
Credits:
Thanks to an anonymous contributor working with VeriSign iDefense Labs.
UNQUOTE
--
Você está recebendo e-mails da lista usuarios@pt-br.libreoffice.org
# Informações sobre os comandos disponíveis (em inglês):
mande e-mail vazio para usuarios+unsubscribe@pt-br.libreoffice.org
# Cancelar sua assinatura: mande e-mail vazio para:
usuarios+unsubscribe@pt-br.libreoffice.org
# Arquivo de mensagens:
http://listarchives.libreoffice.org/pt-br/usuarios/
--
Você está recebendo e-mails da lista usuarios@pt-br.libreoffice.org
# Informações sobre os comandos disponíveis (em inglês):
mande e-mail vazio para usuarios+unsubscribe@pt-br.libreoffice.org
# Cancelar sua assinatura: mande e-mail vazio para:
usuarios+unsubscribe@pt-br.libreoffice.org
# Arquivo de mensagens: http://listarchives.libreoffice.org/pt-br/usuarios/
Context
- [pt-br-usuarios] Re: security warning AOO · João Mac-Cormick
Privacy Policy |
Impressum (Legal Info) |
Copyright information: Unless otherwise specified, all text and images
on this website are licensed under the
Creative Commons Attribution-Share Alike 3.0 License.
This does not include the source code of LibreOffice, which is
licensed under the Mozilla Public License (
MPLv2).
"LibreOffice" and "The Document Foundation" are
registered trademarks of their corresponding registered owners or are
in actual use as trademarks in one or more countries. Their respective
logos and icons are also subject to international copyright laws. Use
thereof is explained in our
trademark policy.