Berlin, April 25, 2015 – The Document Foundation announces LibreOffice 4.3.7 “Still”, the seventh minor release of the LibreOffice 4.3 family, which is now the suggested version of the software for large deployments in the enterprise and for conservative users. LibreOffice 4.3.7 contains over 100 bug fixes.
LibreOffice 4.3.7 and LibreOffice 4.4.2, announced in early April, include a security patch for CVE-2015-1774: OpenOffice HWP Filter Remote Execution and DoS Vulnerability, where an issue in OpenOffice’s Hangul Word Processor (HWP) filter allows attackers to cause a denial of service (memory corruption and application crash) or possibly the execution of arbitrary code by preparing specially crafted documents in the HWP document format in versions from 1997 or older.
Users are invited to update their version of LibreOffice to 4.3.7 “Still” or 4.4.2 “Fresh”, in order to protect their system from the potential effects of this vulnerability.
The Document Foundation suggests to deploy LibreOffice 4.3.7 in enterprises and large organizations when backed by professional support by certified individuals (a list is available at http://www.documentfoundation.org/certification/) capable of providing value added support.
People interested in technical details can find change logs for LibreOffice 4.3.7 here: https://wiki.documentfoundation.org/Releases/4.3.7/RC1 (fixed in RC1) and https://wiki.documentfoundation.org/Releases/4.3.7/RC2 (fixed in RC2).
LibreOffice 4.4.2 “Fresh” and LibreOffice 4.3.7 “Still” are available for download from the following link: http://www.libreoffice.org/download/.
LibreOffice users, free software advocates and community members can support The Document Foundation with a donation at http://donate.libreoffice.org.