incubator-ooo-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From NoOp <gl...@sbcglobal.net>
Subject Re: CVE-2012-0037: OpenOffice.org data leakage vulnerability
Date Sun, 29 Apr 2012 21:21:57 GMT
On 04/29/2012 01:42 PM, Rob Weir wrote:
> On Sun, Apr 29, 2012 at 4:14 PM, Ariel Constenla-Haile
...
>>
>> The good news is that replacing the old library with the patched library
>> solves the crash, and does not reproduce the vulnerability issue.
>>
>> I am not sure if anyone has been able to reproduce the issue on Linux
>> with OOo 3.3. May be we can give you the file to test it, it would be
>> nice to have someone else testing it. If someone knows we are able to do
>> so, please let us know.
>>
> 
> Absolutely not.  The test exploit file must *not* be shared.
> 
> -Rob
> 
...

<shrug> No problem.


---------------------------------------------------------------------
To unsubscribe, e-mail: ooo-users-unsubscribe@incubator.apache.org
For additional commands, e-mail: ooo-users-help@incubator.apache.org


Mime
View raw message