MDVSA-2012:091 -- Mandriva libreofficeID: oval:org.secpod.oval:def:302909 | Date: (C)2012-11-08 (M)2021-06-02 |
Class: PATCH | Family: unix |
Security issues were identified and fixed in libreoffice: An integer overflow vulnerability in the libreoffice graphic loading code could allow a remote attacker to cause a denial of service or potentially execute arbitrary code . An integer overflow flaw, leading to buffer overflow, was found in the way libreoffice processed invalid Escher graphics records length in PowerPoint documents. An attacker could provide a specially-crafted PowerPoint document that, when opened, would cause libreoffice to crash or, potentially, execute arbitrary code with the privileges of the user running libreoffice . libreoffice for Mandriva Linux 2011 has been upgraded to the 3.5.4 version which is not vulnerable to these issues.
Platform: |
Mandriva Linux 2011.0 |