lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Tue, 20 Mar 2007 11:22:04 -1000
From: Peter Besenbruch <prb@...a.net>
To: full-disclosure@...ts.grok.org.uk
Subject: Re: [SECURITY] [DSA 1270-1] New OpenOffice.org
 packages fix several vulnerabilities

Martin Schulze wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> - --------------------------------------------------------------------------
> Debian Security Advisory DSA 1270-1                    security@...ian.org
> http://www.debian.org/security/                             Martin Schulze
> March 20th, 2007                        http://www.debian.org/security/faq
> - --------------------------------------------------------------------------
> 
> Package        : openoffice.org
> Vulnerability  : several
> Problem type   : local (remote)
> Debian-specific: no
> CVE IDs        : CVE-2007-0002 CVE-2007-0238 CVE-2007-0239

....

> For the testing distribution (etch) these problems have been fixed in
> version 2.0.4.dfsg.2-6.
> 
> For the unstable distribution (sid) these problems have been fixed in
> version 2.0.4.dfsg.2-6.

Of course, it would be more helpful to have the actual, fixed, versions 
uploaded and available, when announcing that we should update.

-- 
Hawaiian Astronomical Society: http://www.hawastsoc.org
HAS Deepsky Atlas: http://www.hawastsoc.org/deepsky

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists