[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Remove libreoffice regression details - wheezy LTS

Brian May bam at debian.org
Mon Mar 5 20:49:20 UTC 2018 

Brian May pushed to branch master at Debian Security Tracker / security-tracker


Commits:
78b64794 by Brian May at 2018-03-06T07:48:42+11:00
Remove libreoffice regression details - wheezy LTS

I attempted to reproduce this issue - which is presumably a regression
from fixing CVE-2017-3157 (it could also be CVE-2017-7870 which was also
fixed in the same release). I created a file with a chart in Libreoffice
sheet in Wheezy, and then upgraded to the security release version of
libreoffice. I couldn't reproduce the issue, charts worked perfectly.

I also attempted to look up other reports of the same issue and failed.
As a result, I suspect this regression was a once off, maybe related to
the specific file or the computer it was being run on.

It could also be related to the graphics card driver being used.

Not removing libreoffice entry, because there are two CVEs still
requiring attention.

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -61,8 +61,6 @@ libgcrypt11
 libmad (Kurt Roeckx)
 --
 libreoffice
-  NOTE: regression update, see:
-  NOTE: https://lists.debian.org/debian-lts/2017/05/msg00012.html
 --
 libvorbis (Guido Günther)
   NOTE: Underlying reason for CVE-2017-14160 yet unclear, no upstream feedback on this issue.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/78b64794f0695b073041f36fc09a692e12e16ac7

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/78b64794f0695b073041f36fc09a692e12e16ac7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180305/c57f4b53/attachment.html>

More information about the Secure-testing-commits mailing list