'[oss-security] Re: [Officesecurity] Kind request to update upstream CVE-2012-2334 advisories they to'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    [oss-security] Re: [Officesecurity] Kind request to update upstream CVE-2012-2334 advisories they to
From:       Caolán McNamara <caolanm () redhat ! com>
Date:       2012-05-29 9:52:49
Message-ID: 1338285169.4437.2.camel () Brinn
[Download RAW message or body]

On Mon, 2012-05-28 at 17:09 +0200, Jan Lieskovsky wrote:
> For what is related against upstream patches -- upon testing we can confirm,
> the original ones were complete and this is in no way a new security flaw.

...

> But something, which got corrected upstream in previous release(s), and
> should mention possibility of arbitrary code execution too in order to properly
> describe this deficiency.
> 
> OpenOffice.org / LibreOffice upstreams - please update your advisories to
> reflect this if possible yet.

Done, for LibreOffice, updated description to reflect overflow
possibilities.

C.

[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic