Bug 212379

Summary: security/vuxml: Security vulnerability in editors/openoffice-4 (CVE-2014-3575)
Product: Ports & Packages Reporter: Sevan Janiyan <venture37>
Component: Individual Port(s)Assignee: Mark Felder <feld>
Status: Closed FIXED    
Severity: Affects Some People CC: feld, office, ports-secteam, vlad-fbsd
Priority: --- Keywords: needs-patch, security
Version: Latest   
Hardware: Any   
OS: Any   
URL: http://www.openoffice.org/security/cves/CVE-2014-3575.html

Description Sevan Janiyan 2016-09-04 23:58:44 UTC
CVE-2014-3575 - https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3575
Comment 1 VK freebsd_triage 2016-10-07 11:00:16 UTC
* Upstream report:

> Versions Affected:
> * Apache OpenOffice 4.1.0 and older on Windows.
> * OpenOffice.org versions are also affected.
> Apache OpenOffice users are advised to upgrade to Apache OpenOffice 4.1.1.
Comment 2 commit-hook freebsd_committer 2016-10-12 01:17:47 UTC
A commit references this bug:

Author: feld
Date: Wed Oct 12 01:17:13 UTC 2016
New revision: 423814
URL: https://svnweb.freebsd.org/changeset/ports/423814

  Document OpenOffice vulnerability

  PR:		212379
  Security:	CVE-2014-3575

Comment 3 Mark Felder freebsd_committer 2016-10-12 01:23:09 UTC
Thanks for your report!