openoffice.org, openoffice.org2 security update

2007-06-13T22:55:37
ID CESA-2007:0406
Type centos
Reporter CentOS Project
Modified 2007-06-17T14:44:12

Description

CentOS Errata and Security Advisory CESA-2007:0406

OpenOffice.org is an office productivity suite that includes desktop applications such as a word processor, spreadsheet, presentation manager, formula editor, and drawing program.

A heap overflow flaw was found in the RTF import filer. An attacker could create a carefully crafted RTF file that could cause OpenOffice.org to crash or possibly execute arbitrary code if the file was opened by a victim. (CVE-2007-0245)

All users of OpenOffice.org are advised to upgrade to these updated packages, which contain a backported fix to correct this issue.

Merged security bulletin from advisories: http://lists.centos.org/pipermail/centos-announce/2007-June/013927.html http://lists.centos.org/pipermail/centos-announce/2007-June/013928.html http://lists.centos.org/pipermail/centos-announce/2007-June/013961.html http://lists.centos.org/pipermail/centos-announce/2007-June/013962.html

Affected packages: openoffice.org openoffice.org-i18n openoffice.org-kde openoffice.org-libs openoffice.org2 openoffice.org2-base openoffice.org2-calc openoffice.org2-core openoffice.org2-draw openoffice.org2-emailmerge openoffice.org2-graphicfilter openoffice.org2-impress openoffice.org2-javafilter openoffice.org2-langpack-af_ZA openoffice.org2-langpack-ar openoffice.org2-langpack-bg_BG openoffice.org2-langpack-bn openoffice.org2-langpack-ca_ES openoffice.org2-langpack-cs_CZ openoffice.org2-langpack-cy_GB openoffice.org2-langpack-da_DK openoffice.org2-langpack-de openoffice.org2-langpack-el_GR openoffice.org2-langpack-es openoffice.org2-langpack-et_EE openoffice.org2-langpack-eu_ES openoffice.org2-langpack-fi_FI openoffice.org2-langpack-fr openoffice.org2-langpack-ga_IE openoffice.org2-langpack-gl_ES openoffice.org2-langpack-gu_IN openoffice.org2-langpack-he_IL openoffice.org2-langpack-hi_IN openoffice.org2-langpack-hr_HR openoffice.org2-langpack-hu_HU openoffice.org2-langpack-it openoffice.org2-langpack-ja_JP openoffice.org2-langpack-ko_KR openoffice.org2-langpack-lt_LT openoffice.org2-langpack-ms_MY openoffice.org2-langpack-nb_NO openoffice.org2-langpack-nl openoffice.org2-langpack-nn_NO openoffice.org2-langpack-pa_IN openoffice.org2-langpack-pl_PL openoffice.org2-langpack-pt_BR openoffice.org2-langpack-pt_PT openoffice.org2-langpack-ru openoffice.org2-langpack-sk_SK openoffice.org2-langpack-sl_SI openoffice.org2-langpack-sr_CS openoffice.org2-langpack-sv openoffice.org2-langpack-ta_IN openoffice.org2-langpack-th_TH openoffice.org2-langpack-tr_TR openoffice.org2-langpack-zh_CN openoffice.org2-langpack-zh_TW openoffice.org2-langpack-zu_ZA openoffice.org2-math openoffice.org2-pyuno openoffice.org2-testtools openoffice.org2-writer openoffice.org2-xsltfilter

Upstream details at: https://rhn.redhat.com/errata/RHSA-2007-0406.html