Bug 218030 (CVE-2006-6120) - koffice: update to 1.6.1
Summary: koffice: update to 1.6.1
Keywords:
Status: CLOSED NEXTRELEASE
Alias: CVE-2006-6120
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Rex Dieter
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On: 217959
Blocks:
TreeView+ depends on / blocked
 
Reported: 2006-12-01 13:09 UTC by Rex Dieter
Modified: 2019-09-29 12:19 UTC (History)
3 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2006-12-06 15:18:36 UTC
Embargoed:

Attachments (Terms of Use)

Description Rex Dieter 2006-12-01 13:09:37 UTC 
koffice-1.6.1 update blockers.

So, far, only GraphicsMagick bug #217959
Comment 1 Jason Tibbitts 2006-12-01 15:42:18 UTC 
Note that the koffice release notes include the following:

KPresenter Import Filter for PowerPoint

    * There is a security issue in the import filter for MS Powerpoint, that is
fixed with this release. Every KOffice user should upgrade to 1.6.1 for this
reason alone.

so this update has security implications.  I can find no CVE at this time.
Comment 2 Rex Dieter 2006-12-01 15:54:54 UTC 
yucky, I'm working on the koffice-1.6.1 update, I'll try to expedite things.
Comment 3 Rex Dieter 2006-12-01 19:18:18 UTC 
So far, so good, devel(fc7) branch build (almost) done:
http://buildsys.fedoraproject.org/build-status/job.psp?uid=22760
Comment 4 Rex Dieter 2006-12-01 23:51:29 UTC 
Queue'd builds for 
koffice/FC-5 (job id: 22771)
koffice/FC-6 (job id: 22772)
koffice-langpacks/devel (job id 22773)
then shortly after buildsys went awol.  ??  

Will recheck buildsys status later tonight, or tomorrow morning.
Comment 5 Rex Dieter 2006-12-05 20:26:53 UTC 
All done.
Comment 6 Ville Skyttä 2006-12-06 12:32:03 UTC 
The security issue is CVE-2006-6120.  For the record, FC-4 (koffice 1.6.0) is
still most likely vulnerable.
Comment 7 Rex Dieter 2006-12-06 14:35:27 UTC 
OK, we can do FC-4 too, reopening...
Comment 8 Rex Dieter 2006-12-06 15:18:36 UTC 
koffice-1.6.1-1.fc4 build queue'd (job id 23038)
Note You need to log in before you can comment on or make changes to this bug.