Lucene search
ApacheCVELIST:CVE-2021-28129HistoryOct 07, 2021 - 3:50 p.m.
CVE-2021-28129 DEB packaging for Apache OpenOffice 4.1.8 installed with a non-root userid and groupid
2021-10-0715:50:11
CWE-284
apache
raw.githubusercontent.com
2
While working on Apache OpenOffice 4.1.8 a developer discovered that the DEB package did not install using root, but instead used a userid and groupid of 500. This both caused issues with desktop integration and could allow a crafted attack on files owned by that user or group if they exist. Users who installed the Apache OpenOffice 4.1.8 DEB packaging should upgrade to the latest version of Apache OpenOffice.
Related
cve
cve
CVE-2021-28129
2021-10-07 16:15:00
cnvd
cnvd
Apache OpenOffice Access Control Error Vulnerability
2021-10-13 00:00:00
prion
prion
Design/Logic Flaw
2021-10-07 16:15:00
kaspersky
kaspersky
KLA12404 Multiple vulnerabilities in OpenOffice
2021-10-06 00:00:00
nessus
nessus
Apache OpenOffice < 4.1.11 Multiple Vulnerabilities
2021-10-15 00:00:00