-New Features

  • Switching to the creating forms in the PDF format
  • Added the ability to disable the Connect to cloud page via the --lock-portals key
  • Added a window to restart the application if the settings marked with the asterisk are applied (Windows, Linux)
  • Added the Use graphics acceleration option to the application settings
  • Added the progress of unpacking downloaded update to the About page (Windows)
  • Added the ability to open a file by specifying its name in the terminal (Linux)
  • Updated images for the error pages
  • Added the translation into Serbian (sr-Latn-RS, Serbian (Latin, Serbia and Montenegro))
  • Added a button to select a local file in the hyperlink insertion dialog window
  • Changes in program interface: manageable functional buttons, Replace button is now on the Home tab, Copy style, Clear style, Select all
  • Autoshape shadowing settings
  • Updated the set of color themes available in editors
  • Added internal help in Portuguese (pt-BR)
  • Added Arabic to all regional settings
  • Added a title and a button to close the panel to the Chat panel

Document Editor

  • New button on the top toolbar for changing document editing mode: Editing, Reviewing, Viewing
  • Added tooltips for new or updated functionality (displayed when loading the editor or when switching to the corresponding tab)
  • Implemented the ability to set the format for page numbering
  • Added support for the page color
  • Updated built-in paragraph styles
  • New items in the indents menu for opening the right panel and managing paragraph indents, the ability to manage paragraph indents via the top toolbar
  • Color theme button is now on the Layout tab
  • Mail merge button is now on the Collaboration tab
  • Line spacing options updated
  • Improved work of the algorithm for displaying numbers and punctuation in Arabic text for the Neutral and Weak classes
  • Improved fitting for paragraphs with main RTL direction

Spreadsheet Editor

  • New languages added: ligature support
  • Selected cells are highlighted on their respective row/column numbers
  • New functions: GETPIVOTDATA, IMPORTRANGE
  • New function category: Custom based on jsdoc
  • Version history update: edited cells are highlighted
  • Users get custom protected range cells viewing rights
  • Implemented the ability to copy/move sheets between opened books
  • Changed the appearance of the sheet list in the embedded viewer in accordance with the styles of the main spreadsheet editor

Presentation Editor

  • New slide settings on the right panel: show background graphics, reset background to the theme background, apply settings to all slides
  • Added Animation pane
  • Added a mode for editing master slides and templates
  • Updated the player interface for playing audio/video files (Windows and Linux)

Forms

  • When adding a fixed form, now it is inserted without wrapping in front of the text
  • The color of the Picture placeholder corresponds to the color of the role for this form
  • The thickness of the frame for required fields is now 2 px with any zoom
  • Added a button to switch to the editing mode (similar to the button in the editor header) for forms opened in the View or Fill forms mode

PDF Editor

  • Added buttons for switching editing/viewing (annotations) modes to the toolbar and the editor header
  • Added tooltips for new or updated functionality (displayed when loading the editor or when switching to the corresponding tab)
  • In the Edit mode, it’s possible to add various objects (using the Home and Insert tabs) and configure them using the right panel and context menu
  • Added the ability to add, delete or rotate pages using the context menu and the toolbar
  • Added a mini toolbar for adding annotations when selecting text

Fixes Security

  • Fixed vulnerabilities in the PtgName::assemble, PtgNameX::assemble, PtgParen::assemble, PtgRef3d::assemble, PtgList::assemble and PtgArea3d::assemble methods which cause crash when converting XLS to XLSX
  • Fixed the vulnerability in the CDataStream::ReadEmrTextBase method which causes crash when converting ODP to PDF
  • Fixed the vulnerability in the GlobalsSubstream::UpdateDefineNames method which causes crash when converting XLS to XLSX
  • Fixed the vulnerability in the WorkBookStream::UpdateXti, WorkBookStream::UpdateXti, methods which causes crash when converting XLS to XLSX
  • Fixed Heap Buffer Overflow when converting EPUB to PDF
  • Fixed the vulnerability in the CPPTUserInfo::LoadExternal method which allows writing a file to a folder with restricted access when converting PPT to PPTX
  • Fixed vulnerabilities which allow reading data from a third-party file when converting OOXML to ODF and vice versa
  • Fixed Heap Buffer Overflow in the CSvmFile::Read_META_BMP method when converting ODP to PPTX
    • testingtesting123
      link
      fedilink
      arrow-up
      10
      ·
      6 months ago

      Do you have a link providing clear info on that? Because I have seen only comments, no serious analysis on security whatsoever…

      • jaaaardvark@lemm.ee
        link
        fedilink
        arrow-up
        2
        ·
        edit-2
        6 months ago

        Sure, here’s the original investigation on its Russian origin: https://dou-ua.translate.goog/forums/topic/38748/?_x_tr_sl=uk&_x_tr_tl=en&_x_tr_hl=en-US (Dou is the ukrainian IT forum).

        Note I didn’t claim anything about technical security. It’s more of an ethical issue. Even if it’s FOSS (which, as seen in the other subthread, its merely pretending to be), it’s helping russian government.

        If you want to consider security — security starts with trust. And GRU/FSB will infiltrate and use any segment of supply chain it has in its reach, being less constrained with any laws than NSA. Are you sure that malicious code will be caught in time like with xz?