MDVSA-2011:027 -- Mandriva openoffice.orgID: oval:org.secpod.oval:def:300409 | Date: (C)2012-01-07 (M)2023-02-20 |
Class: PATCH | Family: unix |
Multiple vulnerabilities were discovered and corrected in OpenOffice.org: Multiple directory traversal vulnerabilities allow remote attackers to overwrite arbitrary files via a .. in an entry in an XSLT JAR filter description file, an Extension file, or unspecified other JAR or ZIP files . Use-after-free vulnerability in oowriter allows remote attackers to cause a denial of service or possibly execute arbitrary code via malformed tables in an RTF document . Use-after-free vulnerability in oowriter allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted tags in an RTF document . The WW8ListManager::WW8ListManager function in oowriter does not properly handle an unspecified number of list levels in user-defined list styles in WW8 data in a Microsoft Word document, which allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted .DOC file that triggers an out-of-bounds write . Multiple off-by-one errors in the WW8DopTypography::ReadFromMem function in oowriter allow remote attackers to cause a denial of service or possibly execute arbitrary code via crafted typography information in a Microsoft Word .DOC file that triggers an out-of-bounds write . soffice places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory . Heap-based buffer overflow in Impress allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted PNG file in an ODF or Microsoft Office document, as demonstrated by a PowerPoint document . Heap-based buffer overflow in Impress allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted TGA file in an ODF or Microsoft Office document . OpenOffice.org packages have been updated in order to fix these issues. Additionally openoffice.org-voikko packages that require OpenOffice.org are also being provided and voikko package is upgraded from 2.0 to 2.2.1 version in MES5.1.
Platform: |
Mandriva Linux 2010.0 |
Mandriva Linux 2010.1 |
Mandriva Linux 2009.0 |