incubator-ooo-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From NoOp <gl...@sbcglobal.net>
Subject Re: CVE-2012-0037: OpenOffice.org data leakage vulnerability
Date Thu, 26 Apr 2012 20:36:18 GMT
On 04/24/2012 03:50 AM, Ariel Constenla-Haile wrote:
> Hi Gary,
> 
> On Mon, Apr 23, 2012 at 07:06:44PM -0700, NoOp wrote:
...
>> > My tests worked fine on Linux 32 and 64 bits.
>> > More people testing is welcome.
>> 
>> Thanks Ariel! I'll try to test tomorrow. Currently the 3.4 versions:
>> <https://cwiki.apache.org/confluence/display/OOOUSERS/AOO+3.4+Unofficial+Developer+Snapshots>
>> install into the same location as OOo 3.3.0 (/opt/openoffice.org3)
>> instead of /opt/openoffice.org3.4/. So, I'll need to do complete
>> parallel installs in order to test properly. Note: I could just as
>> easily extract the .so from the .deb if I knew which one(s).
> 
> The library is inside the following package:
> 64 bits: ooobasis3.4-core05_3.4.0-1_amd64.deb
> 32 bits: ooobasis3.4-core05_3.4.0-1_i386.deb

Excellent! Got them both and so far nothing has blown up in 3.3.0 (32
bit and 64 bit) :-) Thanks.

> 
> You can download the libraries (with the name already modified) from:
> 
> http://people.apache.org/~arielch/CVE-2012-0037.zip
> http://people.apache.org/~arielch/CVE-2012-0037.zip.asc
> 
> 
> Regards



---------------------------------------------------------------------
To unsubscribe, e-mail: ooo-users-unsubscribe@incubator.apache.org
For additional commands, e-mail: ooo-users-help@incubator.apache.org


Mime
View raw message