Why Mepis 6.5 has to have Open office 2.2 final!

Hi again guys,

Now I'm not sure how specific this is to the Mepis version but previous version of Open Office < 2.2 have been found to contain critical security issues.

see:
http://www.debian.org/security/2007/dsa-1270

http://secunia.com/advisories/24588/

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=490

http://www.openoffice.org/security/CVE-2007-2.html

http://www.openoffice.org/security/CVE-2007-0238

http://www.openoffice.org/security/CVE-2007-0239.html

clearly Debian is advising users to upgrade to the newest version of Open Office, to ship a version that clearly contains security issues is at best irresponsible and should be sorted out before Mepis final ships. If the alien debs exist already then what is the problem with including Open Office 2.2 final in Mepis 6.5?

To quote the Open Office web site, 'OpenOffice.org 2.2 is an important new release and all should download it, as it resolves security issues and includes significant enhancements.'

As a Mepis user I just want to see the best for this fine distro, but to knowingly ship a compromised version of a software application in to an environment where many thousands of users will be relying on it is very dangerous. This should not be the case and I hope Warren reads this and agrees with me on this issue.

Thank you