[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

MDVSA-2011:027 -- Mandriva openoffice.org

ID: oval:org.secpod.oval:def:300409Date: (C)2012-01-07   (M)2023-02-20
Class: PATCHFamily: unix




Multiple vulnerabilities were discovered and corrected in OpenOffice.org: Multiple directory traversal vulnerabilities allow remote attackers to overwrite arbitrary files via a .. in an entry in an XSLT JAR filter description file, an Extension file, or unspecified other JAR or ZIP files . Use-after-free vulnerability in oowriter allows remote attackers to cause a denial of service or possibly execute arbitrary code via malformed tables in an RTF document . Use-after-free vulnerability in oowriter allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted tags in an RTF document . The WW8ListManager::WW8ListManager function in oowriter does not properly handle an unspecified number of list levels in user-defined list styles in WW8 data in a Microsoft Word document, which allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted .DOC file that triggers an out-of-bounds write . Multiple off-by-one errors in the WW8DopTypography::ReadFromMem function in oowriter allow remote attackers to cause a denial of service or possibly execute arbitrary code via crafted typography information in a Microsoft Word .DOC file that triggers an out-of-bounds write . soffice places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory . Heap-based buffer overflow in Impress allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted PNG file in an ODF or Microsoft Office document, as demonstrated by a PowerPoint document . Heap-based buffer overflow in Impress allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted TGA file in an ODF or Microsoft Office document . OpenOffice.org packages have been updated in order to fix these issues. Additionally openoffice.org-voikko packages that require OpenOffice.org are also being provided and voikko package is upgraded from 2.0 to 2.2.1 version in MES5.1.

Platform:
Mandriva Linux 2010.0
Mandriva Linux 2010.1
Mandriva Linux 2009.0
Product:
openoffice.org
Reference:
MDVSA-2011:027
CVE-2010-4643
CVE-2010-4253
CVE-2010-3689
CVE-2010-3454
CVE-2010-3453
CVE-2010-3452
CVE-2010-3451
CVE-2010-3450
CVE    8
CVE-2010-3454
CVE-2010-3453
CVE-2010-3452
CVE-2010-3451
...
CPE    3
cpe:/o:mandriva:linux:2009.0
cpe:/o:mandriva:linux:2010.1
cpe:/o:mandriva:linux:2010.0

© SecPod Technologies