Dear Mr. Duerr,
I recognized today, that the latest version of OpenOffice is 4.1.1.
Therefore I do not understand your message.
Best regards
Gunter Stadie
Am 25.04.2015 um 21:13 schrieb Herbert Duerr:
CVE-2015-1774
OpenOffice HWP Filter Remote Code Execution and Denial of Service
And another
Sent from my iPad
On Apr 25, 2015, at 1:11 PM, Herbert Duerr h...@apache.org wrote:
CVE-2015-1774
OpenOffice HWP Filter Remote Code Execution and Denial of Service
Vulnerability
A vulnerability in OpenOffice's HWP filter allows attackers to cause a
denial of service (memory
On 29/04/15 21:53, Marcus wrote:
Am 04/29/2015 05:39 PM, schrieb jan i:
On 29 April 2015 at 15:07, Simon Phippssi...@webmink.com wrote:
On Wed, Apr 29, 2015 at 2:00 PM, Andrea Pescettipesce...@apache.org
wrote:
Simon Phipps wrote:
Given this problem is not fixed in the current download,
Given this problem is not fixed in the current download, should the project
suspend downloads until it can be addressed? Few of the people downloading
the package will be aware of this CVE or of the necessary mitigation
post-install.
S.
On Sat, Apr 25, 2015 at 8:13 PM, Herbert Duerr
On Wed, Apr 29, 2015 at 2:00 PM, Andrea Pescetti pesce...@apache.org
wrote:
Simon Phipps wrote:
Given this problem is not fixed in the current download, should the
project
suspend downloads until it can be addressed?
This looks like a very extreme measure to take. The severity of the
Simon Phipps wrote:
Given this problem is not fixed in the current download, should the project
suspend downloads until it can be addressed?
This looks like a very extreme measure to take. The severity of the
issue would not justify it. As far as I know, there are no known
exploits and we
On 29 April 2015 at 15:07, Simon Phipps si...@webmink.com wrote:
On Wed, Apr 29, 2015 at 2:00 PM, Andrea Pescetti pesce...@apache.org
wrote:
Simon Phipps wrote:
Given this problem is not fixed in the current download, should the
project
suspend downloads until it can be addressed?
Am 04/29/2015 05:39 PM, schrieb jan i:
On 29 April 2015 at 15:07, Simon Phippssi...@webmink.com wrote:
On Wed, Apr 29, 2015 at 2:00 PM, Andrea Pescettipesce...@apache.org
wrote:
Simon Phipps wrote:
Given this problem is not fixed in the current download, should the
project
suspend
On 29/04/15 13:00, Andrea Pescetti wrote:
issue would not justify it. As far as I know, there are no known
exploits and we are talking about a file format that is obsolete by all
Is this vulnerability exploited only by opening a file in HWP format, or
can it be exploited by any file?
jonathon
-2015-1774: OpenOffice HWP Filter Remote Execution and DoS
Vulnerability
On 25/04/2015 Herbert Duerr wrote:
CVE-2015-1774
OpenOffice HWP Filter Remote Code Execution and Denial of Service
[ ... ]
Note that the CVE link
http://cve.mitre.org/cgi-bin/cvename.cgi?name=2015-1774
still lists
CVE-2015-1774
OpenOffice HWP Filter Remote Code Execution and Denial of Service
Vulnerability
A vulnerability in OpenOffice's HWP filter allows attackers to cause a
denial of service (memory corruption and application crash) or possibly
execution of arbitrary code by preparing specially crafted
11 matches
Mail list logo
