heap overflow in OpenOffice.org RTF parsing routine
Bug #120400 reported by
disabled.user
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openoffice.org (Ubuntu) |
Fix Released
|
High
|
Matthias Klose | ||
Dapper |
Fix Released
|
High
|
Chris Cheney | ||
Edgy |
Fix Released
|
High
|
Chris Cheney | ||
Feisty |
Fix Released
|
High
|
Matthias Klose | ||
Gutsy |
Fix Released
|
High
|
Matthias Klose |
Bug Description
Binary package hint: openoffice.org
From [1]:
"John Heasman discovered a heap overflow in the routines of OpenOffice.org
that parse RTF files. A specially crafted RTF file could cause the
filter to overwrite data on the heap, which may lead to the execution
of arbitrary code."
This affects all versions of OpenOffice.org up to (and including) 2.2.0.
Please provide updated packages as soon as possible.
[1] http://
[2] http://
[3] (in German) http://
CVE References
Changed in openoffice.org: | |
importance: | Undecided → Critical |
status: | Unconfirmed → Confirmed |
Changed in openoffice.org: | |
assignee: | nobody → doko |
status: | New → In Progress |
importance: | Undecided → High |
importance: | Critical → High |
assignee: | nobody → doko |
status: | Confirmed → In Progress |
assignee: | nobody → ccheney |
status: | New → Fix Committed |
importance: | Undecided → High |
assignee: | nobody → ccheney |
importance: | Undecided → High |
status: | New → Fix Committed |
Changed in openoffice.org: | |
status: | In Progress → Fix Committed |
To post a comment you must log in.
No news on this one after almost two weeks? Sorry for my impatience, but this is a "confirmed" security-related bug with a status of "critical" in a vital Ubuntu component, so I think there's quite some urge to release a security update as fast as possible.