Apache OpenOffice security fixes emerge
Under new management: First revamp passes one million downloads
Details have emerged about the security fixes that came bundled with Apache OpenOffice 3.4.0, the latest version of the open-source productivity suite.
Apache OpenOffice 3.4.0, released last week, included fixes for three security vulnerabilities, all rated as "important". The trio included an integer overflow error involving problems in handling embedded images and a memory overwrite bug connecting with importing WordPerfect files. Both of the flaws might be used as a means to inject hostile code onto vulnerable systems, providing hackers are able to trick prospective marks into opening booby-trapped files. The third vulnerability involves what would appear to be a less serious program crash bug involving the handling of malformed PowerPoint files.
Both OpenOffice.org 3.3 and the beta versions of 3.4 are affected by all three flaws, which get patched with Apache OpenOffice 3.4.0, the first release of the software under new management after Oracle handed over the project last year.
In related news, the Apache Software Foundation announced that downloads of the software had crossed the one million milestone since the release of the software. ®
As said elsewhere
The OpenOffice developers have, in their majority, left the OpenOffice project and created LibreOffice.
So if you really want an open Office application, you want LibreOffice.
@AC 19:02GMT - Re: Which one?
Easy answer for you!. As an end-user, there is no big difference between the two so you can freely pick any one you want.
Now if you are a paid corporate developer/manager looking for some code to pilfer freely without being forced to contribute back to the community, then OpenOffice is the way to go. You don't care about politics but IBM and Oracle surely do.
Apache just drop it; LibreOffice replaced it due to Oracles' greed/stupidity.
People must be dumb to download 'OpenOffice' past the split.