Digital Signature Spoofing Flaws Uncovered in OpenOffice and LibreOffice

  • Thread starter Deleted member 108694
  • Start date
D

Deleted member 108694

Guest
The maintainers of LibreOffice and OpenOffice have shipped security updates to their productivity software to remediate multiple vulnerabilities that could be weaponized by malicious actors to alter documents to make them appear as if they are digitally signed by a trusted source.
 


Huh... So, my assumption is that the vulnerability was in some pretty old code because LibreOffice split off long ago. My understanding was that most of the LibreOffice code had changed significantly since then.
 
Huh... So, my assumption is that the vulnerability was in some pretty old code because LibreOffice split off long ago. My understanding was that most of the LibreOffice code had changed significantly since then.
From what it says if you are running 7.0.5 or later in LibreOffice you are good - Debian 11 ships with 7.0.4 - not good
 

Members online


Latest posts

Top