Home » You searched for security » Page 3

Search Results for: security

The Document Foundation publishes details of LibreOffice 3.4.3 security fixes

The Internet, October 4, 2011 – The Document Foundation (TDF) publishes some details of the security fixes included with the recently released LibreOffice 3.4.3, and included in the older 3.3.4 version. Following industry best practice, details of security fixes are withheld until users have been given time to migrate to the new version. RedHat security researcher Huzaifa Sidhpurwala identified a memory corruption vulnerability in the code responsible for loading Microsoft Word documents in LibreOffice. This flaw could have been used for nefarious purposes, such as installing viruses, through a specially-crafted file. The corresponding vulnerability description is CVE-2011-2713,”Out-of-bounds property read in binary .doc filter”. LibreOffice 3.4.3 also includes various improvements to the loading of Windows Metafile (.wmf) and Windows Enhanced Metafile (.emf) image formats that were found through fuzz testing. LibreOffice developers have developed some additional security patches and fixes. These are part of a general set of development improvements which are reflected in the overall quality and stability of the software. Most LibreOffice 3.4.3 security fixes have been developed by Caolan McNamara of RedHat and Marc-André Laverdière of Tata Consultancy Services. “Working on fuzzing LibreOffice import filters has been a great experience, and I am glad I could contribute in

Announcement of LibreOffice 25.8.4

Berlin, 18 December 2025 – LibreOffice 25.8.4, the fourth minor update to the free office suite developed by volunteers for personal productivity in office environments on Windows, MacOS and Linux, is now available from the download page. With LibreOffice 25.2 reaching the end of life on 30 November, and the announcement of LibreOffice 26.2 scheduled for early February, this release is ready for production environments. It provides over 70 fixes which further improve the suite’s performance, reliability and interoperability. All LibreOffice users are encouraged to update their installations as soon as possible. LibreOffice 25.8.4 is based on the highly robust LibreOffice technology platform, which supports the development of desktop, mobile, and cloud applications from both TDF and ecosystem companies. The platform supports both available document formats for full interoperability: the native, open standard ODF (Open Document Format, ODT, ODS and ODP) and the proprietary Microsoft OOXML (DOCX, XLSX and PPTX). Products based on LibreOffice Technology are available for all desktop operating systems (Windows, macOS, Linux and Chrome OS), mobile platforms (Android and iOS), and the cloud. For enterprise-class deployments, versions are available from ecosystem companies with added features and benefits, such as SLAs and security patch backports for three to

Videos from the Open Source Conference 2025 in Luxembourg

At the recent Open Source Conference 2025 in Luxembourg there were two talks about LibreOffice. The first was Lessons learned from 13 years at The Document Foundation and LibreOffice, where Florian Effenberger, Executive Director of the foundation, talks about the legal setup of The Document Foundation and how its statutes enshrine values and ideals like openness, transparency and meritocracy. Then there was Open Innovation and Open Source in Schleswig-Holstein – Practice for Europe, where Sven Thomsen, CIO of the German federal state of Schleswig-Holstein (which is moving to LibreOffice), outlined the state’s pioneering path toward digital sovereignty through Open Source and Open Innovation. The talk highlighted the risks of dependency on proprietary software—including lack of transparency, inflated costs, and reduced security.

The Document Foundation announces the approval of the Open Document Format (ODF) v1.4 standard by OASIS Open

This new version of the native LibreOffice document format standard marks the 20th anniversary of the only open document format for office applications Berlin, December 3, 2025 – The Document Foundation announces that OASIS Open (www.oasis-open.org), the global open-source and standards organisation, has approved the Open Document Format (ODF) for office applications v1.4 as an OASIS standard, which is the organisation’s highest level of ratification. The release of ODF v1.4 coincides with the 20th anniversary of ODF’s adoption as an OASIS Standard. Since 2005, ODF has served users as a vendor-neutral, royalty-free format for office documents, ensuring that files remain readable, editable and interoperable across platforms. Several governments and international organisations, including NATO, the European Commission and countries across multiple continents, have mandated ODF for their operations worldwide. ODF v1.4 maintains full backward compatibility and improves developer documentation, adds better support for assistive technologies for accessibility, improves professional document formatting and visual design capabilities, and expands features for data analysis and technical documentation. These updates reinforce the Open Document Format’s position as a comprehensive solution for office productivity and document creation. “ODF provides a vendor-neutral foundation for office productivity and collaboration. With v1.4, the standard continues to evolve, supporting cloud

The Role of ODF in Digital Identity and Authentication

Reliable data flows, verifiable signatures and predictable structures are essential for digital identity systems, which touch every aspect of modern digital life. They authorise transactions, confirm requests and guarantee security policies. In this context, the Open Document Format (ODF) offers a transparent, computer-readable foundation for verifying the authenticity of documents and ensuring their long-term integrity. Each ODF file is a structured ZIP container with a consistent internal layout. It contains a set of XML files that are always located in the same position. These files include meta.xml for metadata, manifest.xml for the list of files and relationships, content.xml for document data and styles.xml for presentation rules. The files are either ODT (text), ODS (spreadsheets), ODP (presentations) or ODG (drawings). Because everything is in XML format and in the same location, identity systems can analyse the content without searching for it as they would with OOXML files, which vary greatly depending on the application used to create them. Identity systems can therefore focus on specific parts of a file rather than scanning raw binary blocks, which are present in OOXML files. This is important for signing, integrity validation, metadata extraction and policy enforcement. When documents move from one identity platform to

Announcement of LibreOffice 25.8.3

Berlin, 13 November 2025 – LibreOffice 25.8.3, the third minor release of the free, volunteer-supported office suite for personal productivity in office environments, for Windows, MacOS and Linux, is now available at www.libreoffice.org/download. The new version fixes 70 issues compared to the previous release, which came out in October [1]. LibreOffice 25.8.3 is based on the LibreOffice Technology, which enables the development of desktop, mobile and cloud versions – either from TDF or from the ecosystem – that fully supports the two document format standards: the open ODF or Open Document Format (ODT, ODS and ODP), and the closed and proprietary Microsoft OOXML (DOCX, XLSX and PPTX). Products based on the LibreOffice Technology are available for all major desktop operating systems (Windows, macOS, Linux and ChromeOS), mobile platforms (Android and iOS) and the cloud. For enterprise-class deployments, TDF recommends the LibreOffice Enterprise optimized versions from ecosystem companies, with dedicated value-added features and other benefits such as SLAs and security patch backports for three to five years (www.libreoffice.org/download/libreoffice-in-business/). English manuals for the LibreOffice 25.8 family are available for download at https://books.libreoffice.org/en/. End users can get first-level technical support from volunteers on user mailing lists and Ask LibreOffice website: ask.libreoffice.org. Downloading LibreOffice

Press Releases

Announcement of LibreOffice 25.8.4

Berlin, 18 December 2025 – LibreOffice 25.8.4, the fourth minor update to the free office suite developed by volunteers for…

Open Document Format

The Role of ODF in the Era of Digital Identity and Authentication

Digital identity has become an integral part of everyday life. We use it to access work tools and sign documents…