Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-2487-1:38979
HistoryJun 07, 2012 - 7:53 p.m.

[SECURITY] [DSA 2487-1] openoffice.org security update

2012-06-0719:53:54
lists.debian.org
25

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.038 Low

EPSS

Percentile

91.8%

JSON

Debian Security Advisory DSA-2487-1 [email protected]
http://www.debian.org/security/ Florian Weimer
June 07, 2012 http://www.debian.org/security/faq

Package : openoffice.org
Vulnerability : buffer overflow
Problem type : local (remote)
Debian-specific: no
CVE ID : CVE-2012-1149 CVE-2012-2334

It was discovered that OpenOffice.org would not properly process
crafted document files, possibly leading to arbitrary code execution.

CVE-2012-1149
Integer overflows in PNG image handling

CVE-2012-2334
Integer overflow in operator new[] invocation and heap-based
buffer overflow inside the MS-ODRAW parser

For the stable distribution (squeeze), this problem has been fixed in
version 1:3.2.1-11+squeeze6.

For the unstable distribution (sid), these problems have been fixed in
version 1:3.5.2~rc2-1 of the libreoffice package.

We recommend that you upgrade your openoffice.org packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian6mipselopenoffice.org-kde< 1:3.2.1-11+squeeze6openoffice.org-kde_1:3.2.1-11+squeeze6_mipsel.deb
Debian6amd64openoffice.org-base-core< 1:3.2.1-11+squeeze6openoffice.org-base-core_1:3.2.1-11+squeeze6_amd64.deb
Debian6amd64openoffice.org-gtk< 1:3.2.1-11+squeeze6openoffice.org-gtk_1:3.2.1-11+squeeze6_amd64.deb
Debian6mipsopenoffice.org-kde< 1:3.2.1-11+squeeze6openoffice.org-kde_1:3.2.1-11+squeeze6_mips.deb
Debian6s390openoffice.org-mysql-connector< 1.0.1+OOo3.2.1-11+squeeze6openoffice.org-mysql-connector_1.0.1+OOo3.2.1-11+squeeze6_s390.deb
Debian6kfreebsd-i386openoffice.org-filter-binfilter< 1:3.2.1-11+squeeze6openoffice.org-filter-binfilter_1:3.2.1-11+squeeze6_kfreebsd-i386.deb
Debian6allopenoffice.org-l10n-cs< 1:3.2.1-11+squeeze6openoffice.org-l10n-cs_1:3.2.1-11+squeeze6_all.deb
Debian6allopenoffice.org-help-zh-cn< 1:3.2.1-11+squeeze6openoffice.org-help-zh-cn_1:3.2.1-11+squeeze6_all.deb
Debian6ia64mozilla-openoffice.org< 1:3.2.1-11+squeeze6mozilla-openoffice.org_1:3.2.1-11+squeeze6_ia64.deb
Debian6kfreebsd-i386openoffice.org-gtk< 1:3.2.1-11+squeeze6openoffice.org-gtk_1:3.2.1-11+squeeze6_kfreebsd-i386.deb
Rows per page:
1-10 of 4471

Related

nessus 18
openvas 32
osv 1
oraclelinux 1
centos 1
redhat 1
ubuntu 2
fedora 3
securityvulns 3
debiancve 2
prion 2
seebug 1
ubuntucve 2
cve 2
debian 4
gentoo 2
nessus
nessus
Scientific Linux Security Update : openoffice.org on SL5.x, SL6.x i386/x86_64 (20120604)
2012-08-01 00:00:00
Debian DSA-2487-1 : openoffice.org - buffer overflow
2012-06-29 00:00:00
RHEL 5 / 6 : openoffice.org (RHSA-2012:0705)
2012-06-05 00:00:00
openvas
openvas
RedHat Update for openoffice.org RHSA-2012:0705-01
2012-06-08 00:00:00
Debian: Security Advisory (DSA-2487-1)
2012-08-30 00:00:00
CentOS Update for openoffice.org-base CESA-2012:0705 centos5
2012-07-30 00:00:00
osv
osv
openoffice.org - buffer overflow
2012-06-07 00:00:00
oraclelinux
oraclelinux
openoffice.org security update
2012-06-05 00:00:00
centos
centos
autocorr, broffice.org, openoffice.org security update
2012-06-05 10:03:16
redhat
redhat
(RHSA-2012:0705) Important: openoffice.org security update
2012-06-04 00:00:00
ubuntu
ubuntu
LibreOffice vulnerabilities
2012-07-02 00:00:00
OpenOffice.org vulnerabilities
2012-07-02 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: libreoffice-3.3.4.1-5.fc15
2012-06-13 21:28:52
[SECURITY] Fedora 16 Update: libreoffice-3.4.5.2-18.fc16
2012-08-10 22:37:08
[SECURITY] Fedora 16 Update: libreoffice-3.4.5.2-15.fc16
2012-05-27 01:58:33
securityvulns
securityvulns
OpenOffice multiple security vulnerabilities
2012-05-21 00:00:00
CVE-2012-2334 Vulnerabilities related to malformed Powerpoint files in OpenOffice.org 3.3.0
2012-05-21 00:00:00
CVE-2012-1149 OpenOffice.org integer overflow error in vclmi.dll module when allocating memory for an embedded image object
2012-05-21 00:00:00
debiancve
debiancve
CVE-2012-2334
2012-06-19 20:55:00
CVE-2012-1149
2012-06-21 15:55:00
prion
prion
Integer overflow
2012-06-19 20:55:00
Integer overflow
2012-06-21 15:55:00
seebug
seebug
OpenOffice 3.4之前版本 filter/source/msfilter msdffimp.cxx拒绝服务漏洞
2012-05-19 00:00:00
ubuntucve
ubuntucve
CVE-2012-2334
2012-06-19 00:00:00
CVE-2012-1149
2012-06-21 00:00:00
cve
cve
CVE-2012-2334
2012-06-19 20:55:00
CVE-2012-1149
2012-06-21 15:55:00
debian
debian
[BSA-074] Security update for libreoffice
2012-06-12 22:53:41
[BSA 076] Security update for libreoffice
2012-08-23 10:51:07
[BSA 076] Security update for libreoffice
2012-08-23 10:51:07
gentoo
gentoo
LibreOffice: Multiple vulnerabilities
2012-09-24 00:00:00
OpenOffice, LibreOffice: Multiple vulnerabilities
2014-08-31 00:00:00

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.038 Low

EPSS

Percentile

91.8%

JSON
Related for DEBIAN:DSA-2487-1:38979
nessus18openvas32osv1oraclelinux1centos1redhat1ubuntu2fedora3securityvulns3debiancve2prion2seebug1ubuntucve2cve2debian4gentoo2