Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
centosCentOS ProjectCESA-2007:0001
HistoryJan 04, 2007 - 2:55 p.m.

openoffice.org security update

2007-01-0414:55:30
CentOS Project
lists.centos.org
41

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.118 Low

EPSS

Percentile

95.2%

JSON

CentOS Errata and Security Advisory CESA-2007:0001

OpenOffice.org is an office productivity suite that includes desktop
applications such as a word processor, spreadsheet, presentation manager,
formula editor, and drawing program.

Several integer overflow bugs were found in the OpenOffice.org WMF file
processor. An attacker could create a carefully crafted WMF file that could
cause OpenOffice.org to execute arbitrary code when the file was opened by
a victim. (CVE-2006-5870)

All users of OpenOffice.org are advised to upgrade to these updated
packages, which contain a backported fix for this issue.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2007-January/075620.html
https://lists.centos.org/pipermail/centos-announce/2007-January/075621.html
https://lists.centos.org/pipermail/centos-announce/2007-January/075634.html
https://lists.centos.org/pipermail/centos-announce/2007-January/075635.html

Affected packages:
openoffice.org
openoffice.org-i18n
openoffice.org-kde
openoffice.org-libs

Upstream details at:
https://access.redhat.com/errata/RHSA-2007:0001

OSVersionArchitecturePackageVersionFilename
CentOS3i386openoffice.org< 1.1.2-35.2.0.EL3openoffice.org-1.1.2-35.2.0.EL3.i386.rpm
CentOS3i386openoffice.org-i18n< 1.1.2-35.2.0.EL3openoffice.org-i18n-1.1.2-35.2.0.EL3.i386.rpm
CentOS3i386openoffice.org-libs< 1.1.2-35.2.0.EL3openoffice.org-libs-1.1.2-35.2.0.EL3.i386.rpm
CentOS3i386openoffice.org< 1.1.2-35.2.0.EL3openoffice.org-1.1.2-35.2.0.EL3.i386.rpm
CentOS3i386openoffice.org-i18n< 1.1.2-35.2.0.EL3openoffice.org-i18n-1.1.2-35.2.0.EL3.i386.rpm
CentOS3i386openoffice.org-libs< 1.1.2-35.2.0.EL3openoffice.org-libs-1.1.2-35.2.0.EL3.i386.rpm
CentOS4i386openoffice.org< 1.1.5-6.6.0.EL4openoffice.org-1.1.5-6.6.0.EL4.i386.rpm
CentOS4i386openoffice.org-i18n< 1.1.5-6.6.0.EL4openoffice.org-i18n-1.1.5-6.6.0.EL4.i386.rpm
CentOS4i386openoffice.org-kde< 1.1.5-6.6.0.EL4openoffice.org-kde-1.1.5-6.6.0.EL4.i386.rpm
CentOS4i386openoffice.org-libs< 1.1.5-6.6.0.EL4openoffice.org-libs-1.1.5-6.6.0.EL4.i386.rpm
Rows per page:
1-10 of 141

Related

openvas 9
nessus 27
osv 1
redhat 1
suse 1
securityvulns 1
gentoo 1
cve 1
debian 1
cert 1
ubuntu 1
ubuntucve 1
oraclelinux 1
openvas
openvas
SuSE Update for OpenOffice_org SUSE-SA:2007:001
2009-01-28 00:00:00
Ubuntu: Security Advisory (USN-406-1)
2009-03-23 00:00:00
Gentoo Security Advisory GLSA 200701-07 (openoffice)
2008-09-24 00:00:00
nessus
nessus
RHEL 3 / 4 : openoffice.org (RHSA-2007:0001)
2007-01-08 00:00:00
Mandrake Linux Security Advisory : openoffice.org (MDKSA-2007:006)
2007-02-18 00:00:00
Ubuntu 5.10 / 6.06 LTS : openoffice.org/-amd64, openoffice.org2/-amd64 vulnerability (USN-406-1)
2007-11-10 00:00:00
osv
osv
openoffice.org
2007-01-08 00:00:00
redhat
redhat
(RHSA-2007:0001) Important: openoffice.org security update
2007-01-03 00:00:00
suse
suse
code execution in OpenOffice_org
2007-01-04 17:19:07
securityvulns
securityvulns
openoffice.org security update
2007-01-04 00:00:00
gentoo
gentoo
OpenOffice.org: EMF/WMF file handling vulnerabilities
2007-01-12 00:00:00
cve
cve
CVE-2006-5870
2006-12-31 05:00:00
debian
debian
[SECURITY] [DSA 1246-1] New OpenOffice.org packages fix arbitrary code execution
2007-01-08 15:37:35
cert
cert
OpenOffice fails to properly process WMF and EMF files
2007-01-05 00:00:00
ubuntu
ubuntu
OpenOffice.org vulnerability
2007-01-12 00:00:00
ubuntucve
ubuntucve
CVE-2006-5870
2006-12-31 00:00:00
oraclelinux
oraclelinux
Important openoffice.org security update
2007-01-05 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.118 Low

EPSS

Percentile

95.2%

JSON
Related for CESA-2007:0001
openvas9nessus27osv1redhat1suse1securityvulns1gentoo1cve1debian1cert1ubuntu1ubuntucve1oraclelinux1