Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 09 Jan 2007 06:39:50 +0900 (JST)
From:      NAKATA Maho <chat95@mac.com>
To:        openoffice@freebsd.org
Subject:   Please update OOo 1.1.5, 1.1-devel port and OOo-2 related ports.
Message-ID:  <20070109.063950.48497304.chat95@mac.com>
next in thread | raw e-mail | index | archive | help 
there are security vulnerabilities in these ports. I updated to
2 -> 2.1
2-devel -> SRC680_m198
1.1 -> portrevision 4
1.1-devel -> SRX645_m64
at least there are no known security vulnerabilities.
Please see commit log for details for OOo1-ports.
For OOo2 ports, it has been fixed before.

 Revision 1.218 / (download) - annotate - [select for diffs], Mon Jan 8 21:32:12 2007 UTC (6 minutes, 45 seconds ago) by maho
Branch: MAIN
CVS Tags: HEAD
Changes since 1.217: +1 -1 lines
Diff to previous 1.217 (colored)

Fix two security vulnerability
http://www.freebsd.org/cgi/cvsweb.cgi/ports/editors/openoffice.org-1.1/Makefile
* http://www.openoffice.org/security/CVE-2006-3117.html
   http://www.openoffice.org/issues/show_bug.cgi?id=66866
   patch:http://cvs.gnome.org/viewcvs/*checkout*/ooo-build/patches/OOO_1_1/sax%2Bsource%2Bexpatwrap%2Bxml2utf.cxx.diff?rev=1.1.2.1

* http://www.openoffice.org/security/CVE-2006-2198.html
  http://www.openoffice.org/issues/show_bug.cgi?id=66863
  patch:http://cvs.gnome.org/viewcvs/*checkout*/ooo-build/patches/OOO_1_1/6438334-macros-so7-sfx2.diff?rev=1.1.2.1

Obtained from:	security-team@openoffice.org (Rene Engelhard <rene@debian.org>)

Revision 1.217 / (download) - annotate - [select for diffs], Mon Jan 8 06:41:02 2007 UTC (14 hours, 57 minutes ago) by maho
Branch: MAIN
Changes since 1.216: +1 -1 lines
Diff to previous 1.216 (colored)

* Fix WMF security vulnerability
http://www.openoffice.org/servlets/ReadMsg?list=releases&msgNo=10454
http://www.openoffice.org/issues/show_bug.cgi?id=70042
* Bump portrevision

Obtained from: security-team@openoffice.org

you can can verify easiliy that these patches have also been applied to SRX645_m64
(newest version of ooo1.1-devel)

thanks,
-- NAKATA, Maho (maho@FreeBSD.org)

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070109.063950.48497304.chat95>