From e0cb6224f33337b5943e44ffc8bc931176c879bd Mon Sep 17 00:00:00 2001
From: jamie-albert <jamie.albert@chainguard.dev>
Date: Thu, 14 Nov 2024 16:16:07 -0800
Subject: [PATCH] libreOffice CVE-2012-5639 advisory update (#9041)

---
 libreoffice-24.8.advisories.yaml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/libreoffice-24.8.advisories.yaml b/libreoffice-24.8.advisories.yaml
index 6beda7393..8f3d03966 100644
--- a/libreoffice-24.8.advisories.yaml
+++ b/libreoffice-24.8.advisories.yaml
@@ -21,3 +21,7 @@ advisories:
             componentType: apk
             componentLocation: /.PKGINFO
             scanner: grype
+      - timestamp: 2024-11-13T05:16:34Z
+        type: pending-upstream-fix
+        data:
+          note: This CVE has been addressed in OpenOffice which LibreOffice is forked from but has not been fixed in LibreOffice. The feature changes required to remediate this CVE must be implemented by upstream maintainers.