Não esquecer de atualizar a página: http://www.libreoffice.org/about-us/security/advisories/
2015-04-26 16:37 GMT-03:00 Eliane Domingos de Sousa < elianedomin...@libreoffice.org>: > Olá Roberto, > > Muito grata pelo seu email. > > A TDF já anunciou isso no blog internacional no sábado 25: > > http://blog.documentfoundation.org/2015/04/25/the-document-foundation-announces-libreoffice-4-3-7/ > > A postagem traduzida por nós estará disponível amanhã. > > Saudações, > > Eliane Domingos de Sousa > Comunidade LibreOffice Brasil > Membro do Conselho Diretor da TDF > Brazilian LibreOffice Community > TDF Member of the Board of Directors > Experimente o sistema de perguntas e respostas da Comunidade LibreOffice > Brasil:http://ask.libreoffice.org/pt-br/questions/ > http://pt-br.libreoffice.org > > EDX Coworking & Business Club > Seu espaço de trabalho e negócios no centro do Rio de Janeiro > http://www.edxcoworking.com.br > > On 26-04-2015 12:41, Roberto Raimondo Junior (GMAIL) wrote: > > Recebi esse e-mail após ter me cadastrado > > > > -------- Forwarded Message -------- > > Assunto: [libreoffice-users] security warning AOO > > Data: Sun, 26 Apr 2015 18:31:31 +0900 > > De: rost52 <bugquestcon...@online.de> > > Para: us...@global.libreoffice.org <us...@global.libreoffice.org> > > > > > > > > Today, following mail was distributed from > > annou...@openoffice.apache.org. > > Can LibO users face the same threat? > > > > QUOTE > > > > CVE-2015-1774 > > > > OpenOffice HWP Filter Remote Code Execution and Denial of Service > > Vulnerability > > > > A vulnerability in OpenOffice's HWP filter allows attackers to cause a > > denial of service (memory corruption and application crash) or possibly > > execution of arbitrary code by preparing specially crafted documents in > > the HWP document format. > > > > Severity: Important > > > > Vendor: The Apache Software Foundation > > > > Versions Affected: > > > > All Apache OpenOffice versions 4.1.1 and older are affected. > > > > Mitigation: > > > > Apache OpenOffice users are advised to remove the problematic library in > > the "program" folder of their OpenOffice installation. On Windows it is > > named "hwp.dll", on Mac it is named "libhwp.dylib" and on Linux it is > > named "libhwp.so". Alternatively the library can be renamed to anything > > else e.g. "hwp_renamed.dll". > > This mitigation will drop AOO's support for documents created in "Hangul > > Word Processor" versions from 1997 or older. Users of such documents are > > advised to convert their documents to other document formats such as > > OpenDocument before doing so. > > > > Apache OpenOffice aims to fix the vulnerability in version 4.1.2. > > > > Credits: > > > > Thanks to an anonymous contributor working with VeriSign iDefense Labs. > > > > UNQUOTE > > > > > > > > > -- > Você está recebendo e-mails da lista usuarios@pt-br.libreoffice.org > # Informações sobre os comandos disponíveis (em inglês): > mande e-mail vazio para usuarios+unsubscr...@pt-br.libreoffice.org > # Cancelar sua assinatura: mande e-mail vazio para: > usuarios+unsubscr...@pt-br.libreoffice.org > # Arquivo de mensagens: > http://listarchives.libreoffice.org/pt-br/usuarios/ > > -- Você está recebendo e-mails da lista usuarios@pt-br.libreoffice.org # Informações sobre os comandos disponíveis (em inglês): mande e-mail vazio para usuarios+unsubscr...@pt-br.libreoffice.org # Cancelar sua assinatura: mande e-mail vazio para: usuarios+unsubscr...@pt-br.libreoffice.org # Arquivo de mensagens: http://listarchives.libreoffice.org/pt-br/usuarios/
