On Fri, 2021-04-16 at 12:04 +0200, William Gathoye (LibreOffice) wrote:
On 15/04/2021 21:55, Caolán McNamara wrote:
[...]
In the LibreOffice 7-1 series in versions prior to 7.1.2, and in the
7-
0 series in versions prior to 7.0.5
[...]
have received a CVE warning from a security analyst saying that the
LibreOffice 7.0 branch is still vulnerable to CVE-2021-25631.
The 7.0.5 version seems not to be fixing the issue. He recommends me to
tweak the Chocolatey libreoffice-still package and upgrade all the
users to the 7.1 branch.
Can you forward the details of that claim to
security@documentfoundation.org for investigation. I certainly see the
expected commit in 7.0.5
--
To unsubscribe e-mail to: discuss+unsubscribe@documentfoundation.org
Problems? https://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/
Posting guidelines + more: https://wiki.documentfoundation.org/Netiquette
List archive: https://listarchives.documentfoundation.org/www/discuss/
Privacy Policy: https://www.documentfoundation.org/privacy
Context
Privacy Policy |
Impressum (Legal Info) |
Copyright information: Unless otherwise specified, all text and images
on this website are licensed under the
Creative Commons Attribution-Share Alike 3.0 License.
This does not include the source code of LibreOffice, which is
licensed under the Mozilla Public License (
MPLv2).
"LibreOffice" and "The Document Foundation" are
registered trademarks of their corresponding registered owners or are
in actual use as trademarks in one or more countries. Their respective
logos and icons are also subject to international copyright laws. Use
thereof is explained in our
trademark policy.