Bug#771163: libreoffice: CVE-2014-9093

To: Moritz Muehlenhoff <jmm@inutil.org>, 771163@bugs.debian.org
Cc: control@bugs.debian.org
Subject: Bug#771163: libreoffice: CVE-2014-9093
From: Rene Engelhard <rene@debian.org>
Date: Thu, 27 Nov 2014 11:52:32 +0100
Message-id: <[🔎] 20141127105232.GA2131@rene-engelhard.de>
Reply-to: Rene Engelhard <rene@debian.org>, 771163@bugs.debian.org
In-reply-to: <[🔎] 20141127091846.21286.59897.reportbug@m25s06.vlinux.de>
References: <[🔎] 20141127091846.21286.59897.reportbug@m25s06.vlinux.de>

close 771163 1:4.4.0~beta1-1 # see https://bugs.freedesktop.org/show_bug.cgi?id=86449#c4
thanks

Hi,

On Thu, Nov 27, 2014 at 10:18:46AM +0100, Moritz Muehlenhoff wrote:
> Package: libreoffice
> Severity: grave
> Tags: security
> Justification: user security hole

sigh. See #770166

> Hi,
> please see https://bugs.freedesktop.org/show_bug.cgi?id=86449 for the
> bug report with a reproducer (which also crashes the version in wheezy).
> 
> 4.3 fix by Caolan:
> http://cgit.freedesktop.org/libreoffice/core/commit/?h=libreoffice-4-3&id=b4840d3632e4404bee4bd192a7db916cbad3a401

*shugs*, if you indeed think that this warrants a DSA, let's do it...

Expect uploads tomorrow.

Regards,

Rene

Reply to:

Follow-Ups:
- Processed: Re: Bug#771163: libreoffice: CVE-2014-9093
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

References:
- Bug#771163: libreoffice: CVE-2014-9093
  - From: Moritz Muehlenhoff <jmm@inutil.org>

Prev by Date: Bug#771163: libreoffice: CVE-2014-9093
Next by Date: Processed: Re: Bug#771163: libreoffice: CVE-2014-9093
Previous by thread: Bug#771163: libreoffice: CVE-2014-9093
Next by thread: Processed: Re: Bug#771163: libreoffice: CVE-2014-9093
Index(es):
- Date
- Thread