On Sun, Nov 08, 2015 at 11:01:48AM +0100, Rene Engelhard wrote: > On Sat, Nov 07, 2015 at 11:33:52PM +0100, Jean-Baptiste Faure wrote: > > Le 05/11/2015 12:19, Caolán McNamara a écrit : > > > Bottom Line: ensure you are upgraded to at least 4.4.6 or 5.0.0 > > > > > > Fixed in LibreOffice 4.4.6/5.0.0 > > > > > > CVE-2015-5214 DOC Bookmark Status Memory Corruption > > > http://www.libreoffice.org/about-us/security/advisories/cve-2015-5214/ > > > > > > Fixed in LibreOffice 4.4.5/5.0.0 > > > > Do you confirm that these security issues are fixed in 5.0._0_ (that is > > to say since 2015-08-05) and not only in 5.0._3_ that has been just > > released ? > > It was definitely fixed before 5.0.3. > My memories say from 5.0.2 rc1 onwards or somesuch but it might also be wrong > and confusing something.
I did some research today based on the commit messages - and when I am not mistaken most of them are fixed in 5.0.0 but CVE-2015-5214 is fixed only in 5.0.1. (But still long before 5.0.3) Regards, Rene -- To unsubscribe e-mail to: discuss+unsubscr...@documentfoundation.org Problems? http://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/ Posting guidelines + more: http://wiki.documentfoundation.org/Netiquette List archive: http://listarchives.documentfoundation.org/www/discuss/ All messages sent to this list will be publicly archived and cannot be deleted
