Re: [tdf-discuss] security related information, CVE-2018-14939, no action required

classic Classic list List threaded Threaded
1 message Options
Takeshi Abe Takeshi Abe
Reply | Threaded
Open this post in threaded view
|

Re: [tdf-discuss] security related information, CVE-2018-14939, no action required

皆様

以下のように脆弱性情報(CVE-2018-14939)が公開されておりますが、ユーザーは特に
何か対応する必要はないそうです。
報告されたバッファーオーバーランを利用したアタックは不可能だと考えられるため、
不具合ではないとされています。

-- Takeshi Abe

On Mon, 13 Aug 2018 12:04:57 +0100, Caolán McNamara <[hidden email]> wrote:

> A CVE VE-2018-14939 was logged about a buffer overrun in our realpath
> usage in function get_app_path. We contend there is no bug in
> LibreOffice and no action is required
>
> https://www.libreoffice.org/about-us/security/advisories/CVE-2018-14939
>
> --
> To unsubscribe e-mail to: [hidden email]
> Problems? https://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/
> Posting guidelines + more: https://wiki.documentfoundation.org/Netiquette
> List archive: https://listarchives.documentfoundation.org/www/discuss/
> Privacy Policy: https://www.documentfoundation.org/privacy

--
Unsubscribe instructions: E-mail to [hidden email]
Posting guidelines + more: https://wiki.documentfoundation.org/Netiquette
List archive: https://listarchives.libreoffice.org/ja/discuss/
Privacy Policy: https://www.documentfoundation.org/privacy