(RHSA-2007:0069) Important: openoffice.org security update

2007-03-2200:00:00

access.redhat.com

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.534 Medium

EPSS

Percentile

97.3%

JSON

OpenOffice.org is an office productivity suite that includes desktop
applications such as a word processor, spreadsheet, presentation manager,
formula editor, and drawing program.

John Heasman discovered a stack overflow in the StarCalc parser in
OpenOffice. An attacker could create a carefully crafted StarCalc file
that could cause OpenOffice.org to crash or possibly execute arbitrary code
if the file was opened by a victim. (CVE-2007-0238)

Flaws were discovered in the way OpenOffice.org handled hyperlinks. An
attacker could create an OpenOffice.org document which could run commands
if a victim opened the file and clicked on a malicious hyperlink.
(CVE-2007-0239)

All users of OpenOffice.org are advised to upgrade to these updated
packages, which contain a backported fix to correct this issue.

OSVersionArchitecturePackageVersionFilename
RedHatanyi386openoffice.org-langpack-ve_za< 2.0.4-5.4.17.1openoffice.org-langpack-ve_ZA-2.0.4-5.4.17.1.i386.rpm
RedHatanyi386openoffice.org-langpack-ca_es< 2.0.4-5.4.17.1openoffice.org-langpack-ca_ES-2.0.4-5.4.17.1.i386.rpm
RedHatanyx86_64openoffice.org-langpack-kn_in< 2.0.4-5.4.17.1openoffice.org-langpack-kn_IN-2.0.4-5.4.17.1.x86_64.rpm
RedHatanyx86_64openoffice.org-langpack-hi_in< 2.0.4-5.4.17.1openoffice.org-langpack-hi_IN-2.0.4-5.4.17.1.x86_64.rpm
RedHatanyi386openoffice.org-langpack-cs_cz< 2.0.4-5.4.17.1openoffice.org-langpack-cs_CZ-2.0.4-5.4.17.1.i386.rpm
RedHatanyx86_64openoffice.org-draw< 2.0.4-5.4.17.1openoffice.org-draw-2.0.4-5.4.17.1.x86_64.rpm
RedHatanyx86_64openoffice.org-calc< 2.0.4-5.4.17.1openoffice.org-calc-2.0.4-5.4.17.1.x86_64.rpm
RedHatanyi386openoffice.org-langpack-ar< 2.0.4-5.4.17.1openoffice.org-langpack-ar-2.0.4-5.4.17.1.i386.rpm
RedHatanyx86_64openoffice.org-langpack-sl_si< 2.0.4-5.4.17.1openoffice.org-langpack-sl_SI-2.0.4-5.4.17.1.x86_64.rpm
RedHatanyx86_64openoffice.org-langpack-mr_in< 2.0.4-5.4.17.1openoffice.org-langpack-mr_IN-2.0.4-5.4.17.1.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	any	i386	openoffice.org-langpack-ve_za	< 2.0.4-5.4.17.1	openoffice.org-langpack-ve_ZA-2.0.4-5.4.17.1.i386.rpm
RedHat	any	i386	openoffice.org-langpack-ca_es	< 2.0.4-5.4.17.1	openoffice.org-langpack-ca_ES-2.0.4-5.4.17.1.i386.rpm
RedHat	any	x86_64	openoffice.org-langpack-kn_in	< 2.0.4-5.4.17.1	openoffice.org-langpack-kn_IN-2.0.4-5.4.17.1.x86_64.rpm
RedHat	any	x86_64	openoffice.org-langpack-hi_in	< 2.0.4-5.4.17.1	openoffice.org-langpack-hi_IN-2.0.4-5.4.17.1.x86_64.rpm
RedHat	any	i386	openoffice.org-langpack-cs_cz	< 2.0.4-5.4.17.1	openoffice.org-langpack-cs_CZ-2.0.4-5.4.17.1.i386.rpm
RedHat	any	x86_64	openoffice.org-draw	< 2.0.4-5.4.17.1	openoffice.org-draw-2.0.4-5.4.17.1.x86_64.rpm
RedHat	any	x86_64	openoffice.org-calc	< 2.0.4-5.4.17.1	openoffice.org-calc-2.0.4-5.4.17.1.x86_64.rpm
RedHat	any	i386	openoffice.org-langpack-ar	< 2.0.4-5.4.17.1	openoffice.org-langpack-ar-2.0.4-5.4.17.1.i386.rpm
RedHat	any	x86_64	openoffice.org-langpack-sl_si	< 2.0.4-5.4.17.1	openoffice.org-langpack-sl_SI-2.0.4-5.4.17.1.x86_64.rpm
RedHat	any	x86_64	openoffice.org-langpack-mr_in	< 2.0.4-5.4.17.1	openoffice.org-langpack-mr_IN-2.0.4-5.4.17.1.x86_64.rpm