openoffice.org security update

2008-08-30T22:57:31
ID CESA-2008:0835
Type centos
Reporter CentOS Project
Modified 2008-08-30T22:58:19

Description

CentOS Errata and Security Advisory CESA-2008:0835

OpenOffice.org is an office productivity suite that includes desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor, and a drawing program.

A numeric truncation error was found in the OpenOffice.org memory allocator. If a carefully crafted file was opened by a victim, an attacker could use this flaw to crash OpenOffice.org or, possibly, execute arbitrary code. (CVE-2008-3282)

All users of openoffice.org are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.

Merged security bulletin from advisories: http://lists.centos.org/pipermail/centos-announce/2008-August/015230.html http://lists.centos.org/pipermail/centos-announce/2008-August/015231.html

Affected packages: openoffice.org openoffice.org-base openoffice.org-calc openoffice.org-core openoffice.org-draw openoffice.org-emailmerge openoffice.org-graphicfilter openoffice.org-headless openoffice.org-impress openoffice.org-javafilter openoffice.org-langpack-af_ZA openoffice.org-langpack-ar openoffice.org-langpack-as_IN openoffice.org-langpack-bg_BG openoffice.org-langpack-bn openoffice.org-langpack-ca_ES openoffice.org-langpack-cs_CZ openoffice.org-langpack-cy_GB openoffice.org-langpack-da_DK openoffice.org-langpack-de openoffice.org-langpack-el_GR openoffice.org-langpack-es openoffice.org-langpack-et_EE openoffice.org-langpack-eu_ES openoffice.org-langpack-fi_FI openoffice.org-langpack-fr openoffice.org-langpack-ga_IE openoffice.org-langpack-gl_ES openoffice.org-langpack-gu_IN openoffice.org-langpack-he_IL openoffice.org-langpack-hi_IN openoffice.org-langpack-hr_HR openoffice.org-langpack-hu_HU openoffice.org-langpack-it openoffice.org-langpack-ja_JP openoffice.org-langpack-kn_IN openoffice.org-langpack-ko_KR openoffice.org-langpack-lt_LT openoffice.org-langpack-ml_IN openoffice.org-langpack-mr_IN openoffice.org-langpack-ms_MY openoffice.org-langpack-nb_NO openoffice.org-langpack-nl openoffice.org-langpack-nn_NO openoffice.org-langpack-nr_ZA openoffice.org-langpack-nso_ZA openoffice.org-langpack-or_IN openoffice.org-langpack-pa_IN openoffice.org-langpack-pl_PL openoffice.org-langpack-pt_BR openoffice.org-langpack-pt_PT openoffice.org-langpack-ru openoffice.org-langpack-sk_SK openoffice.org-langpack-sl_SI openoffice.org-langpack-sr_CS openoffice.org-langpack-ss_ZA openoffice.org-langpack-st_ZA openoffice.org-langpack-sv openoffice.org-langpack-ta_IN openoffice.org-langpack-te_IN openoffice.org-langpack-th_TH openoffice.org-langpack-tn_ZA openoffice.org-langpack-tr_TR openoffice.org-langpack-ts_ZA openoffice.org-langpack-ur openoffice.org-langpack-ve_ZA openoffice.org-langpack-xh_ZA openoffice.org-langpack-zh_CN openoffice.org-langpack-zh_TW openoffice.org-langpack-zu_ZA openoffice.org-math openoffice.org-pyuno openoffice.org-sdk openoffice.org-sdk-doc openoffice.org-testtools openoffice.org-writer openoffice.org-xsltfilter

Upstream details at: https://rhn.redhat.com/errata/RHSA-2008-0835.html