LibreOffice 4.3.7, announced yesterday, and LibreOffice 4.4.2, announced
in early April, include a security patch for CVE-2015-1774 OpenOffice
HWP Filter Remote Execution and DoS Vulnerability.
A vulnerability in OpenOffice's HWP (Hangul Word Processor) filter
allows attackers to cause a denial of service (memory corruption and
application crash) or possibly the execution of arbitrary code by
preparing specially crafted documents in the HWP document format in
versions from 1997 or older.
Users are invited to update their version of LibreOffice to 4.3.7
"Still" or 4.4.2 "Fresh", in order to protect their system from the
potential effects of this vulnerability.
--
Italo Vignoli - Marketing & PR
email italo.vignoli@documentfoundation.org
mobile +39.348.5653829 - jabber italo@libreoffice.org
hangout italo.vignoli@gmail.com - skype italovignoli
The Document Foundation, Kurfürstendamm 188, 10707 Berlin, DE
Gemeinnützige rechtsfähige Stiftung des bürgerlichen Rechts
Legal details: http://www.documentfoundation.org/imprint
--
To unsubscribe e-mail to: announce+unsubscribe@documentfoundation.org
Problems? http://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/
List archive: http://listarchives.documentfoundation.org/www/announce/
Context
- [tdf-announce] CVE-2015-1774 · Italo Vignoli
Privacy Policy |
Impressum (Legal Info) |
Copyright information: Unless otherwise specified, all text and images
on this website are licensed under the
Creative Commons Attribution-Share Alike 3.0 License.
This does not include the source code of LibreOffice, which is
licensed under the Mozilla Public License (
MPLv2).
"LibreOffice" and "The Document Foundation" are
registered trademarks of their corresponding registered owners or are
in actual use as trademarks in one or more countries. Their respective
logos and icons are also subject to international copyright laws. Use
thereof is explained in our
trademark policy.