summary |
shortlog | log |
commit |
commitdiff |
tree
first ⋅ prev ⋅ next
Rene Engelhard [Sun, 10 Oct 2021 10:37:28 +0000 (11:37 +0100)]
libreoffice (1:7.0.4-4+deb11u1) bullseye-security; urgency=high
* backport fixes from libreoffice-7-0 branch:
- xmlsecurity-replace-XSecParser-implementation.diff
- xmlsecurity-improve-handling-of-multiple-X509Data-elements.diff:
(fixes CVE-2021-25633 "Double Certificate Attack")
- xmlsecurity-XSecParser-confused-about-multiple-timestamps.diff,
xmlsecurity-ignore-elements-in-ds:Object-that-arent-signed.diff:
(fixes CVE-2021-25634 "Timestamp Manipulation with Signature Wrapping")
- default-to-CertificateValidity::INVALID.diff:
(fixes CVE-2021-25635 "Content Manipulation with Certificate Validation
Attack")
[dgit import unpatched libreoffice 1:7.0.4-4+deb11u1]
Rene Engelhard [Sun, 10 Oct 2021 10:37:28 +0000 (11:37 +0100)]
Import libreoffice_7.0.4-4+deb11u1.debian.tar.xz
[dgit import tarball libreoffice 1:7.0.4-4+deb11u1 libreoffice_7.0.4-4+deb11u1.debian.tar.xz]
Rene Engelhard [Thu, 31 Dec 2020 12:00:06 +0000 (12:00 +0000)]
Import libreoffice_7.0.4.orig.tar.xz
[dgit import orig libreoffice_7.0.4.orig.tar.xz]
Rene Engelhard [Thu, 31 Dec 2020 12:00:06 +0000 (12:00 +0000)]
Import libreoffice_7.0.4.orig-helpcontent2.tar.xz
[dgit import orig libreoffice_7.0.4.orig-helpcontent2.tar.xz]
Rene Engelhard [Thu, 31 Dec 2020 12:00:06 +0000 (12:00 +0000)]
Import libreoffice_7.0.4.orig-translations.tar.xz
[dgit import orig libreoffice_7.0.4.orig-translations.tar.xz]
projects / libreoffice.git / log