On 31.12.2022 15:34, Ilmari Lauhakangas wrote:
On 31.12.2022 12.56, Janis Pütz wrote:
Hi mailing list,
I checked out the source from https://git.libreoffice.org/core yesterday.
While doing that Windows defender found a virus in the source folder:
Exploit:O97M/CVE-2010-3333.PA
file: ..\LibreOffice\sw\qa\extras\rtfimport\data\fdo49893-3.rtf
As advised in the build docs and by autogen.sh, change Windows Defender
settings so it ignores the LibreOffice source:
https://www.makeuseof.com/how-to-whitelist-files-windows-defender/
The reason is that the source tree indeed contains some samples of
threats, that are used to test that LibreOffice is not vulnerable. So
yes, you are right, there are threats in the source tree; and that is
not an issue.
--
Best regards,
Mike Kaganski