CVE-2015-1774
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libreoffice (Ubuntu) |
Fix Released
|
High
|
Björn Michaelsen | ||
Precise |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
Trusty |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
Utopic |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
Vivid |
Fix Released
|
High
|
Björn Michaelsen |
Bug Description
Disclosure date is targeted: 2015-04-25
U-Series:
Upstream master has the fix as commit f974db5d89eacf0
Vivid:
Upstream LibreOffice 4.4.2 has the fix as bddab9a94f84e40
Utopic:
Upstream version LibreOffice 4.3.7 will have the fix as f2d49715c176c80
Trusty:
LibreOffice 4.2 is EOL upstream, thus needs manual backport of patch on top of LibreOffice 4.2.8 as in trusty-proposed
Precise:
LibreOffice 3.5 is EOL upstream, thus needs manual backport of patch on top of LibreOffice 3.5.7
CVE References
Changed in libreoffice (Ubuntu): | |
assignee: | nobody → Björn Michaelsen (bjoern-michaelsen) |
Changed in libreoffice (Ubuntu): | |
status: | New → In Progress |
description: | updated |
information type: | Private Security → Public Security |
Changed in libreoffice (Ubuntu Precise): | |
status: | New → Confirmed |
Changed in libreoffice (Ubuntu Trusty): | |
status: | New → Confirmed |
Changed in libreoffice (Ubuntu Utopic): | |
status: | New → Confirmed |
Changed in libreoffice (Ubuntu Precise): | |
assignee: | nobody → Marc Deslauriers (mdeslaur) |
Changed in libreoffice (Ubuntu Trusty): | |
assignee: | nobody → Marc Deslauriers (mdeslaur) |
Changed in libreoffice (Ubuntu Utopic): | |
assignee: | nobody → Marc Deslauriers (mdeslaur) |
Changed in libreoffice (Ubuntu Vivid): | |
status: | In Progress → Fix Released |
So for vivid, we will just bump the version to 4.4.2 pre-release and pre-disclosure, no need security teams involvement on that one then.