[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[tdf-announce] CVE-2015-1774


LibreOffice 4.3.7, announced yesterday, and LibreOffice 4.4.2, announced
in early April, include a security patch for CVE-2015-1774 OpenOffice
HWP Filter Remote Execution and DoS Vulnerability.

A vulnerability in OpenOffice's HWP (Hangul Word Processor) filter
allows attackers to cause a denial of service (memory corruption and
application crash) or possibly the execution of arbitrary code by
preparing specially crafted documents in the HWP document format in
versions from 1997 or older.

Users are invited to update their version of LibreOffice to 4.3.7
"Still" or 4.4.2 "Fresh", in order to protect their system from the
potential effects of this vulnerability.

--
Italo Vignoli - Marketing & PR
email italo.vignoli@documentfoundation.org
mobile +39.348.5653829 - jabber italo@libreoffice.org
hangout italo.vignoli@gmail.com - skype italovignoli
The Document Foundation, Kurfürstendamm 188, 10707 Berlin, DE
Gemeinnützige rechtsfähige Stiftung des bürgerlichen Rechts
Legal details: http://www.documentfoundation.org/imprint

--
To unsubscribe e-mail to: announce+unsubscribe@documentfoundation.org
Problems? http://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/
List archive: http://listarchives.documentfoundation.org/www/announce/

Privacy Policy | Impressum (Legal Info) | Copyright information: Unless otherwise specified, all text and images on this website are licensed under the Creative Commons Attribution-Share Alike 3.0 License. This does not include the source code of LibreOffice, which is licensed under the Mozilla Public License (MPLv2). "LibreOffice" and "The Document Foundation" are registered trademarks of their corresponding registered owners or are in actual use as trademarks in one or more countries. Their respective logos and icons are also subject to international copyright laws. Use thereof is explained in our trademark policy.