Commit Graph

32 Commits

Author SHA1 Message Date
Sergey Torokhov
550d919c05 app-office/openoffice-bin: set "RPM_COMPRESS_TYPE=none"
Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2026-05-02 20:36:18 +03:00
Sergey Torokhov
4af92e5cd6 app-office/openoffice-bin: drop old 4.1.15, CVEs affected
See fixed CVEs for new 4.1.16 Apache OpenOffice release [1].

[1] https://www.openoffice.org/security/bulletin.html

Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2025-11-12 23:34:31 +03:00
Sergey Torokhov
f70ec67f64 app-office/openoffice-bin: 4.1.16, add RDEPEND kde?(kde-plasma/breeze-gtk)
Add USE="kde" with RDEPEND kde? ( kde-plasma/breeze-gtk )
to enable Plasma's Breeze widget style.

Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2025-11-12 23:29:59 +03:00
Sergey Torokhov
f8f71416f7 app-office/openoffice-bin: 4.1.16 version bump (drop 4.1.16_rc3)
Manifest files checksums for 4.1.16 are the same as for 4.1.16_rc3.

Release notes is available on [1].

Fixed in Apache OpenOffice 4.1.16 [2]:
CVE-2025-64401: Remote documents loaded without prompt via IFrame.
CVE-2025-64402: Remote documents loaded without prompt via OLE objects.
CVE-2025-64403: Remote documents loaded without prompt via "external data sources" in Calc.
CVE-2025-64404: Remote documents loaded without prompt via background and bullet images.
CVE-2025-64405: Remote documents loaded without prompt via DDE function.
CVE-2025-64406: Possible memory corruption during CSV import.
CVE-2025-64407: URL fetching can be used to exfiltrate arbitrary INI file values and environment variables.

[1] https://cwiki.apache.org/confluence/display/OOOUSERS/AOO+4.1.16+Release+Notes
[2] https://www.openoffice.org/security/bulletin.html

Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2025-11-12 23:09:15 +03:00
Sergey Torokhov
2b6ad1394d app-office/openoffice-bin: 4.1.16_rc3 version bump
Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2025-10-26 15:47:38 +03:00
ingenarel
86d9ba06f8 app-office/openoffice-bin: fix long line
fixes the following pkgcheck warnings:

app-office/openoffice-bin
  ExcessiveLineLength: version 4.1.15: excessive line length (over 120 characters) on line: 93

Signed-off-by: Joe Kappus <joe@wt.gd>
Signed-off-by: ingenarel <ingenarelitems@gmail.com>
2025-08-06 15:48:13 -04:00
Sergey Torokhov
7cd8a81120 app-office/openoffice-bin: fix missed RDEPEND
Closes: https://bugs.gentoo.org/932298

Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2024-06-23 01:12:49 +03:00
Michał Górny
c20f8c3acd */*: Inline mirror://sourceforge
See https://github.com/gentoo/gentoo/pull/36198 for the sed invocation.

Signed-off-by: Michał Górny <mgorny@gentoo.org>
2024-04-30 20:29:25 +02:00
Lucio Sauer
f2be215fb9 */*: fix variable order
Manually went through some entries for `pkgcheck scan -c
VariableOrderCheck`.

Signed-off-by: Lucio Sauer <watermanpaint@posteo.net>
2024-04-26 16:46:35 +02:00
Sergey Torokhov
166023cc60 app-office/openoffice-bin: drop old 4.1.14, CVEs affected
Fixed in Apache OpenOffice 4.1.15
CVE-2012-5639: Loading internal / external resource without warning.
CVE-2022-43680: "Use after free" fixed in expat >= 2.4.9
CVE-2023-1183: Arbitrary file write in Base
CVE-2023-47804: Macro URL arbitrary script execution

https://www.openoffice.org/security/bulletin.html

Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2024-01-14 01:00:24 +03:00
Sergey Torokhov
1d5daa524f app-office/openoffice-bin: 4.1.15 version bump
Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2024-01-14 00:59:29 +03:00
Sergey Torokhov
bee737063f app-office/openoffice-bin: drop old 4.1.13, CVEs affected
Fixed in Apache OpenOffice 4.1.14
CVE-2022-38745: An empty class path may lead to run arbitrary Java code
CVE-2022-40674: "Use after free" fixed in expat >= 2.4.9
CVE-2022-47502: Macro URL arbitrary script execution without warning

http://www.openoffice.org/security/bulletin.html

Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2023-04-02 15:08:00 +03:00
Anna (cybertailor) Vyalkova
1e95f22062 */*: update metadata schema uri
Signed-off-by: Anna (cybertailor) Vyalkova <cyber+gentoo@sysrq.in>
2023-03-04 18:56:32 +05:00
Sergey Torokhov
364f18897d app-office/openoffice-bin: 4.1.14 version bump
Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2023-03-01 22:22:58 +03:00
Sergey Torokhov
83eb272345 app-office/openoffice-bin: drop 4.1.12
Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2023-01-19 00:31:04 +03:00
Sergey Torokhov
92cb09f09b app-office/openoffice-bin: drop old 4.1.11
Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2022-10-10 01:01:08 +03:00
Sergey Torokhov
a71d519501 app-office/openoffice-bin: 4.1.13 version bump
Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2022-08-03 01:19:27 +03:00
Sergey Torokhov
214250fa96 app-office/openoffice-bin: some ebuild fixes
Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2022-05-16 00:37:30 +03:00
Sergey Torokhov
f67e192b6b app-office/openoffice-bin: 4.1.12 version bump
Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2022-05-07 01:06:40 +03:00
Andrew Ammerlaan
b3f87d4c68 app-office/openoffice-bin: drop UnusedInherits
Package-Manager: Portage-3.0.28, Repoman-3.0.3
Signed-off-by: Andrew Ammerlaan <andrewammerlaan@gentoo.org>
2021-12-15 11:50:45 +01:00
Sergey Torokhov
98c592d2f6 app-office/openoffice-bin: drop 4.1.10 CVEs affected
Fixed in Apache OpenOffice 4.1.11:
CVE-2021-28129: DEB packaging installed with a non-root userid and groupid [1]
CVE-2021-33035: Buffer overflow from a crafted DBF file [2]
CVE-2021-40439: "Billion Laughs" fixed in Expat >=2.4.0 [3]

[1] http://www.openoffice.org/security/cves/CVE-2021-28129.html
[2] http://www.openoffice.org/security/cves/CVE-2021-33035.html
[3] http://www.openoffice.org/security/cves/CVE-2021-40439.html

Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2021-10-08 20:21:28 +03:00
Sergey Torokhov
738fafc272 app-office/openoffice-bin: 4.1.11 version bump. USE=java deps update
Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2021-10-08 20:19:47 +03:00
Alessandro Barbieri
9c84830033 */*: add lang="en" to <longdescription>
Signed-off-by: Alessandro Barbieri <lssndrbarbieri@gmail.com>
2021-06-28 16:15:30 +02:00
Sergey Torokhov
bf73a1ffa1 app-office/openoffice-bin: drop 4.1.9 CVE affected
CVE-2021-30245 Code execution in Apache OpenOffice
via non-http(s) schemes in Hyperlinks.

Fixed in Apache OpenOffice 4.1.10

http://www.openoffice.org/security/cves/CVE-2021-30245.html

Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2021-05-04 17:16:05 +03:00
Sergey Torokhov
11d75b5fdf app-office/openoffice-bin: 4.1.10 version bump
Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2021-05-04 14:36:34 +03:00
Sergey Torokhov
e7b7449bd8 app-office/openoffice-bin: fix unresolved SONAME dependencies
Closes: https://bugs.gentoo.org/780750

Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2021-04-08 00:41:02 +03:00
Sergey Torokhov
6963075071 app-office/openoffice-bin: drop old 4.1.8
Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2021-03-22 23:12:21 +03:00
Sergey Torokhov
eeb17618e1 app-office/openoffice-bin: 4.1.9 version bump
Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2021-02-11 21:41:23 +03:00
Sergey Torokhov
d1ef9b0334 app-office/openoffice-bin: drop CVE affected version 4.1.7
CVE-2020-13958
Unrestricted actions leads to arbitrary code execution in crafted documents:
https://www.openoffice.org/security/cves/CVE-2020-13958.html

Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2020-11-12 23:11:22 +03:00
Sergey Torokhov
f7723f57f9 app-office/openoffice-bin: 4.1.8 version bump
Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2020-11-12 23:09:27 +03:00
Sergey Torokhov
7e20edf964 app-office/openoffice-bin: drop <arch>-linux KEYWORDS
Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2020-09-22 20:50:11 +03:00
Sergey Torokhov
bc9b58fff6 app-office/openoffice-bin: new package, 4.1.7-r1 revision bump
The Apache OpenOffice (app-office/openoffice-bin-4.1.7-r0)
was removed from gentoo main portage tree.

In this new revision for guru:
Remove python2 dependency and thus drop python2 script support.
Remove obsolete gstreamer-0.10 plugin.

Update to EAPI-7.
Update PDEPEND="java? ..." ( >=virtual/jre-1.5 ) --> ( >=virtual/jre-1.8.0 ).

Signed-off-by: Sergey Torokhov <torokhov-s-a@yandex.ru>
2020-09-21 23:31:01 +03:00