[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] CVE-2021-41832: Apache OpenOffice: Content Manipulation with Certificate Validation A
From: Dave Fisher <wave () apache ! org>
Date: 2021-10-11 3:05:49
Message-ID: 41cad9cb-8df5-29b8-c4bd-95cc51a9e1d7 () apache ! org
[Download RAW message or body]
Severity: moderate
Description:
It is possible for an attacker to manipulate documents to appear to be =
signed by a trusted source.
All versions of Apache OpenOffice up to 4.1.10 are affected. Users are =
advised to update to version 4.1.11.
See CVE-2021-25635 for the LibreOffice advisory.
Credit:
Apache OpenOffice would like to thank Simon Rohlmann, Vladislav Mladenov, =
Christian Mainka, and Jorg Schwenk of Ruhr University Bochum, Germany
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic