dependency-confusion

[Andrew Udvare]

> On 2021-02-20, at 16:48, Jean-Baptiste Faure <jbfaure at libreoffice.org> wrote:
> 
> Hi,
> 
> I certainly did not understand everything in https://medium.com/@alex.birsan/dependency-confusion-4a5d60fec610, but I wonder if LibreOffice could be subject to this kind of vulnerability?

As far as I can tell, the dependencies that LibreOffice uses in distributions are gathered manually and updated manually. So, not really.

-- 
Andrew