Re: [tdf-discuss] Licensing question
On 26.07.2013 00:06, theUser BL wrote: > At first: Congratulation to LibreOffice 4.1. > > In the forums to german news, the most people want to see LibreOffice and > ApacheOpenOffice to merge. > Merging parts of the code is one thing, merging the projects is another. IMO a good and fair collaboration between the projects would be better for the improvement of Free Software than merging both projects. Regards Michael -- To unsubscribe e-mail to: discuss+unsubscr...@documentfoundation.org Problems? http://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/ Posting guidelines + more: http://wiki.documentfoundation.org/Netiquette List archive: http://listarchives.documentfoundation.org/www/discuss/ All messages sent to this list will be publicly archived and cannot be deleted
Re: [tdf-discuss] Licensing question
On 26.07.2013 00:32, Toki Kantoor wrote: > On 07/25/2013 10:06 PM, theUser BL wrote: > >> The big question is: Why doing LibreOffice that? > > The short answer is that the licenses that each organization uses allows > that to happen. > > The longer answer is that free qua libre has implications that free qua > open does not have. Implications that the Apache Foundation is > apparently not willing to accept. Likewise, free qua open has > implications that free qua libre does not have. Implications that the > Document Foundation is apparently not willing to accept. > That's not the whole truth. The Apache licence doesn't contain a copyleft clause - that's true. But the MPL contains a very weak copyleft. The copyleft of the LGPL is much stronger. So: why does LibreOffice use the MPL? Think about it! Regards Michael -- To unsubscribe e-mail to: discuss+unsubscr...@documentfoundation.org Problems? http://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/ Posting guidelines + more: http://wiki.documentfoundation.org/Netiquette List archive: http://listarchives.documentfoundation.org/www/discuss/ All messages sent to this list will be publicly archived and cannot be deleted
Re: [tdf-discuss] Licensing question
Hi Michael, On Fri, 2013-07-26 at 09:53 +0200, RA Stehmann wrote: > So: why does LibreOffice use the MPL? The MPLv2 has many advantages and some weaknesses, as do all licenses depending of course on what you want to achieve. Having said that, personally I believe it is a great choice for LibreOffice and what TDF want to achieve. Some fairly large chunks of MPL code are also distributed with the AOO binaries, it is a 'category-b license' in their nomenclature. Either way - I don't believe the framing of your question is that helpful, or takes account of the balance of contribution & momentum on the ground. As such, I don't think this is likely to be a terribly productive interaction no matter what some subset of user comments on web news threads say today. All the best, Michael. -- michael.me...@suse.com <><, Pseudo Engineer, itinerant idiot -- To unsubscribe e-mail to: discuss+unsubscr...@documentfoundation.org Problems? http://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/ Posting guidelines + more: http://wiki.documentfoundation.org/Netiquette List archive: http://listarchives.documentfoundation.org/www/discuss/ All messages sent to this list will be publicly archived and cannot be deleted
[tdf-discuss] security related information, CVE-2013-2189 and CVE-2013-4156
Apache OpenOffice has announced the details of CVE-2013-2189 and CVE-2013-4156 as they affect Apache OpenOffice, i.e. CVE-2013-2189: CVE-2013-2189: OpenOffice DOC Memory Corruption Vulnerability http://permalink.gmane.org/gmane.comp.apache.maven.announce/1503 CVE-2013-4156: OpenOffice DOCM Memory Corruption Vulnerability http://permalink.gmane.org/gmane.comp.apache.maven.announce/1504 I have now put up equivalent advisory pages for LibreOffice as... a) http://www.libreoffice.org/advisories/CVE-2013-2189/ CVE-2013-2189: Microsoft .doc Memory Corruption Vulnerability We fixed this problem as a side effect of our fixes for CVE-2011-2713 so any version of LibreOffice >= 3.4.3 is unaffected. and b) http://www.libreoffice.org/advisories/CVE-2013-4156/ CVE-2013-4156: Microsoft .docm Denial Of Service We had done some additional work in that filter so for LibreOffice the document triggered a NULL deref and immediate termination of the application. So it's a mild denial of service issue for LibreOffice, nevertheless upgrading to LibreOffice 3.6.7/4.0.4/4.1.0 will avoid the DOS. C. -- To unsubscribe e-mail to: discuss+unsubscr...@documentfoundation.org Problems? http://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/ Posting guidelines + more: http://wiki.documentfoundation.org/Netiquette List archive: http://listarchives.documentfoundation.org/www/discuss/ All messages sent to this list will be publicly archived and cannot be deleted
