headers
Florian Effenberger | 4 Jun 2010 10:51
Favicon

[security-alerts] CVE-2009-3555: OpenOffice.org 2 and 3 may be affected by the TLS/SSL Renegotiation Issue in 3rd Party Libraries

Synopsis

CVE-2009-3555: OpenOffice.org 2 and 3 may be affected by the TLS/SSL 
Renegotiation Issue in 3rd Party Libraries

1. Impact

OpenOffice.org 2 and 3 ship with 3rd party libraries affected by the 
TLS/SSL renegotiation issue documented in CVE-2009-3555.

2. Affected releases

All versions of OpenOffice.org 3 prior to version 3.2.1
All versions of OpenOffice.org 2

Note: OpenOffice.org 1.1 is not impacted by this issue.

3. Symptoms

There are no predictable symptoms that would indicate this issue has 
occurred.

4. Relief/Workaround

None.

5. Resolution

This issue is addressed in the following release: OpenOffice.org 3.2.1
(Continue reading)

Permalink | Reply | 0 comments |
headers
Florian Effenberger | 4 Jun 2010 12:19
Favicon

[security-alerts] CVE-2010-0395: Security vulnerability in OpenOffice.org related to python scripting

Synopsis

CVE-2010-0395: Security vulnerability in OpenOffice.org related to 
python scripting

1. Impact

A security vulnerability in OpenOffice.org related to python scripting 
might lead to unexpected code execution when using the built-in 
scripting IDE for exploring the python code.

2. Affected releases

All versions of OpenOffice.org 3 prior to version 3.2.1
All versions of OpenOffice.org 2

Note: Earlier versions of OpenOffice.org are no longer supported and 
will not be evaluated regarding this issue.

3. Symptoms

There are no predictable symptoms that would indicate this issue has 
occurred.

4. Relief/Workaround

As a workaround, do not inspect python code from non-trustworthy 
documents with the built-in scripting IDE and its dialogs.

5. Resolution
(Continue reading)

Permalink | Reply | 0 comments |

Gmane