[ja-translate] Fw: [security-alerts] CVE-2009-0217: Security Vulnerability in OpenOffice.org resulting from 3rd party library

Shinji Enoki Mon, 15 Feb 2010 21:29:37 -0800

グッデイ榎です

2本目の翻訳です。


レビューをよろしくお願いします。


----
CVE-2009-0217: Security Vulnerability in OpenOffice.org resulting from 
3rd party library
CVE-2009-0217: 第三者のライブラリに起因する OpenOffice.org のセキュリティ脆弱性

        * Synopsis: OpenOffice.org 2 and 3 might be affected by XML signature 
HMAC truncation authentication bypass issue in 3rd party library libxmlsec
        * 概要: OpenOffice.org 2.x および 3.x では、第三者のライブラリである 
libxmlsec での XML 署名の HMAC truncation 認証回避問題によって影響を受けるかも
しれません。

        * State: Resolved
        * ステータス: 解決

1. Impact
1. 影響

OpenOffice.org 2 and 3 ship with 3rd party libraries affected by the XML 
signature HMAC truncation authentication bypass issue documented in 
CVE-2009-0217.
OpenOffice.org 2.x および 3.x は、 第三者のライブラリがCVE-2009-0217に報告
されている XML 署名の HMAC truncation 認証回避問題によって影響を受けます。

2. Affected releases
2. 影響を受けるリリース

        * All versions of OpenOffice.org 3 prior to version 3.2
        * OpenOffice.org 3.2 より前の OpenOffice.org 3.x のすべてのバージョン

        * All versions of OpenOffice.org 2
        * OpenOffice.org 2.x のすべてのバージョン

3. Symptoms
3. 兆候

There are no predictable symptoms that would indicate this issue has 
occurred.
この問題が起こったことを示す、予想できる兆候はありません。

4. Relief/Workaround
4. 軽減/回避方法

None.
なし

5. Resolution
5. 解決

This issue is addressed in the following release: OpenOffice.org 3.2
この問題は以下のリリースで対処されています。

OpenOffice.org 3.2
----


Begin forwarded message:

Date: Fri, 12 Feb 2010 12:02:08 +0100
From: Florian Effenberger <[email protected]>
To: [email protected]
Subject: [security-alerts] CVE-2009-0217: Security Vulnerability in 
OpenOffice.org resulting from 3rd party library


CVE-2009-0217: Security Vulnerability in OpenOffice.org resulting from 
3rd party library

        * Synopsis: OpenOffice.org 2 and 3 might be affected by XML signature 
HMAC truncation authentication bypass issue in 3rd party library libxmlsec

        * State: Resolved

1. Impact

OpenOffice.org 2 and 3 ship with 3rd party libraries affected by the XML 
signature HMAC truncation authentication bypass issue documented in 
CVE-2009-0217.

2. Affected releases

        * All versions of OpenOffice.org 3 prior to version 3.2

        * All versions of OpenOffice.org 2

3. Symptoms

There are no predictable symptoms that would indicate this issue has 
occurred.

4. Relief/Workaround

None.

5. Resolution

This issue is addressed in the following release: OpenOffice.org 3.2

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]



-- 
株式会社グッデイ
榎真治 <[email protected]>

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[ja-translate] Fw: [security-alerts] CVE-2009-0217: Security Vulnerability in OpenOffice.org resulting from 3rd party library

メールによる返信