openoffice.org - buffer overflow

2007-09-1700:00:00

Google

osv.dev

0.926 High

EPSS

Percentile

99.0%

JSON

A heap overflow vulnerability has been discovered in the TIFF parsing
code of the OpenOffice.org suite. The parser uses untrusted values
from the TIFF file to calculate the number of bytes of memory to
allocate. A specially crafted TIFF image could trigger an integer
overflow and subsequently a buffer overflow that could cause the
execution of arbitrary code.

For the old stable distribution (sarge) this problem has been fixed in
version 1.1.3-9sarge8.

For the stable distribution (etch) this problem has been fixed in
version 2.0.4.dfsg.2-7etch2.

For the unstable distribution (sid) this problem has been fixed in
version 2.2.1-9.

For the experimental distribution this problem has been fixed in
version 2.3.0~src680m224-1.

We recommend that you upgrade your openoffice.org packages.

CPENameOperatorVersion
openoffice.orgeq1.1.3-9sarge1
openoffice.orgeq1.1.3-9
openoffice.orgeq1.1.3-9sarge2
openoffice.orgeq1.1.3-9sarge7
openoffice.orgeq1.1.3-9sarge6
openoffice.orgeq1.1.3-9sarge5
openoffice.orgeq1.1.3-9sarge3
openoffice.orgeq1.1.3-9sarge4

Name	Operator	Version
openoffice.org	eq	1.1.3-9sarge1
openoffice.org	eq	1.1.3-9
openoffice.org	eq	1.1.3-9sarge2
openoffice.org	eq	1.1.3-9sarge7
openoffice.org	eq	1.1.3-9sarge6
openoffice.org	eq	1.1.3-9sarge5
openoffice.org	eq	1.1.3-9sarge3
openoffice.org	eq	1.1.3-9sarge4