Jump to content
Compatible Support Forums
Sign in to follow this  
Followers 0
news

[Security Announce] [ MDVSA-2008:090 ] - Updated OpenOffice.org packages fix vulnerabilities

By news, in Upcoming News

Recommended Posts

news    28

news
Posted

This is a multi-part message in MIME format...

 

------------=_1208683580-11275-2963

 

 

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1

 

_______________________________________________________________________

 

Mandriva Linux Security Advisory MDVSA-2008:090

http://www.mandriva.com/security/

_______________________________________________________________________

 

Package : OpenOffice.org

Date : April 20, 2008

Affected: Corporate 3.0

_______________________________________________________________________

 

Problem Description:

 

A heap overflow was discovered in OpenOffice.org's EMF parser.

An attacker could create a carefully crafted EMF file that could

cause OpenOffice.org to crash or potentially execute arbitrary code

if the malicious EMF image was added to a document or if a document

containing such an EMF file was opened (CVE-2007-5746).

 

A heap overflow was discovered in the OLE Structured Storage file

parser, a format used by Microsoft Office documents. An attacker could

create a carefully crafted OLE file that could cause OpenOffice.org

to crash or potentially execute arbitrary code (CVE-2008-0320).

 

The updated packages have been patched to correct these issues.

_______________________________________________________________________

 

References:

 

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5746

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0320

_______________________________________________________________________

 

Updated Packages:

 

Corporate 3.0:

eaed00b902866c1c8eaeb0b2283963d0 corporate/3.0/i586/OpenOffice.org-1.1.2-9.8.C30mdk.i586.rpm

bf24fd6b79476d4622e05cf52efc31b6 corporate/3.0/i586/OpenOffice.org-help-cs-1.1.2-9.8.C30mdk.i586.rpm

b031829e937a98b47495d012d827a2ca corporate/3.0/i586/OpenOffice.org-help-de-1.1.2-9.8.C30mdk.i586.rpm

9b10b493fa4914ba8c74f4611f65e842 corporate/3.0/i586/OpenOffice.org-help-en-1.1.2-9.8.C30mdk.i586.rpm

50a300e7cc3bb7032ca2270a6584e7f1 corporate/3.0/i586/OpenOffice.org-help-es-1.1.2-9.8.C30mdk.i586.rpm

13fd968bec6ee8e809160a407683312e corporate/3.0/i586/OpenOffice.org-help-eu-1.1.2-9.8.C30mdk.i586.rpm

be1db7b2a1476777c4b6c3b4fbb0305c corporate/3.0/i586/OpenOffice.org-help-fi-1.1.2-9.8.C30mdk.i586.rpm

653c73506f66f450ddbb6df1455a0f28 corporate/3.0/i586/OpenOffice.org-help-fr-1.1.2-9.8.C30mdk.i586.rpm

c4995cdcf690ac560fb7865f2b43ea42 corporate/3.0/i586/OpenOffice.org-help-it-1.1.2-9.8.C30mdk.i586.rpm

70fc99ebe87f29f31a9e71f5e79cf119 corporate/3.0/i586/OpenOffice.org-help-ja-1.1.2-9.8.C30mdk.i586.rpm

e95922eb1d683732df7050e0c4bbe1b5 corporate/3.0/i586/OpenOffice.org-help-ko-1.1.2-9.8.C30mdk.i586.rpm

2e5edaee26d9b7905167f244ad526ae8 corporate/3.0/i586/OpenOffice.org-help-nl-1.1.2-9.8.C30mdk.i586.rpm

0f98d1ab2f920c126fc95ff74cf35c47 corporate/3.0/i586/OpenOffice.org-help-ru-1.1.2-9.8.C30mdk.i586.rpm

87d2b1a3ad0ff1fdc30683fb264f58e5 corporate/3.0/i586/OpenOffice.org-help-sk-1.1.2-9.8.C30mdk.i586.rpm

949422a12ca88487a452612e39df2160 corporate/3.0/i586/OpenOffice.org-help-sv-1.1.2-9.8.C30mdk.i586.rpm

95ff06b7fe59c3df9908181c33638372 corporate/3.0/i586/OpenOffice.org-help-zh_CN-1.1.2-9.8.C30mdk.i586.rpm

78d40f885eafc5809381d1d57c816519 corporate/3.0/i586/OpenOffice.org-help-zh_TW-1.1.2-9.8.C30mdk.i586.rpm

24906531c4d47ea9fffce68a250ed6da corporate/3.0/i586/OpenOffice.org-l10n-ar-1.1.2-9.8.C30mdk.i586.rpm

331a54961505ee187fa13340ec8079e5 corporate/3.0/i586/OpenOffice.org-l10n-ca-1.1.2-9.8.C30mdk.i586.rpm

0abb0186fc8f63b069cf004161c9d1c3 corporate/3.0/i586/OpenOffice.org-l10n-cs-1.1.2-9.8.C30mdk.i586.rpm

31f95f5bd774a6101d335896c2e80933 corporate/3.0/i586/OpenOffice.org-l10n-da-1.1.2-9.8.C30mdk.i586.rpm

573e67b672aac283ec82da40f8dcdbe7 corporate/3.0/i586/OpenOffice.org-l10n-de-1.1.2-9.8.C30mdk.i586.rpm

09a27986fd26185fa95d728f64cc504b corporate/3.0/i586/OpenOffice.org-l10n-el-1.1.2-9.8.C30mdk.i586.rpm

184f512d92fdf1cef17815dbc026ff64 corporate/3.0/i586/OpenOffice.org-l10n-en-1.1.2-9.8.C30mdk.i586.rpm

a9d7d0756b8ff7bf93ef79637ebe0d91 corporate/3.0/i586/OpenOffice.org-l10n-es-1.1.2-9.8.C30mdk.i586.rpm

a24bade71e643457292e26fb0a757b29 corporate/3.0/i586/OpenOffice.org-l10n-et-1.1.2-9.8.C30mdk.i586.rpm

ed09d190049fb616ac53870aaf8dc2b1 corporate/3.0/i586/OpenOffice.org-l10n-eu-1.1.2-9.8.C30mdk.i586.rpm

4d10f93feb1db22e54a54be823720d03 corporate/3.0/i586/OpenOffice.org-l10n-fi-1.1.2-9.8.C30mdk.i586.rpm

af9b15cc21bc662dd41b7268dd8cad41 corporate/3.0/i586/OpenOffice.org-l10n-fr-1.1.2-9.8.C30mdk.i586.rpm

29964c4daaf151c7b285f1bb8cde2483 corporate/3.0/i586/OpenOffice.org-l10n-it-1.1.2-9.8.C30mdk.i586.rpm

c6471477d16534ab002df1bae8b31c81 corporate/3.0/i586/OpenOffice.org-l10n-ja-1.1.2-9.8.C30mdk.i586.rpm

731b7f73869021ba95c637a82f75fdfd corporate/3.0/i586/OpenOffice.org-l10n-ko-1.1.2-9.8.C30mdk.i586.rpm

e7eb5b528a69999ebe7c12354da80608 corporate/3.0/i586/OpenOffice.org-l10n-nb-1.1.2-9.8.C30mdk.i586.rpm

77da476ad22bc682461b0fbc640eb2b5 corporate/3.0/i586/OpenOffice.org-l10n-nl-1.1.2-9.8.C30mdk.i586.rpm

939eab8147b526f7c019de12b8e08ad6 corporate/3.0/i586/OpenOffice.org-l10n-nn-1.1.2-9.8.C30mdk.i586.rpm

6d5a7f915e5574cf59d1c0d777866012 corporate/3.0/i586/OpenOffice.org-l10n-pl-1.1.2-9.8.C30mdk.i586.rpm

73eed8d49e422b81bf84efeb79ad4b4d corporate/3.0/i586/OpenOffice.org-l10n-pt-1.1.2-9.8.C30mdk.i586.rpm

01244314ce931ea0b7c6de5720cc5b35 corporate/3.0/i586/OpenOffice.org-l10n-pt_BR-1.1.2-9.8.C30mdk.i586.rpm

40c795c59a4cce94e5607275e81acfc6 corporate/3.0/i586/OpenOffice.org-l10n-ru-1.1.2-9.8.C30mdk.i586.rpm

0a2fb11ff8f69da2c567b9bf2c8d87f5 corporate/3.0/i586/OpenOffice.org-l10n-sk-1.1.2-9.8.C30mdk.i586.rpm

f64c1aac24a68aff80b5611aa9e8764e corporate/3.0/i586/OpenOffice.org-l10n-sv-1.1.2-9.8.C30mdk.i586.rpm

0e1a641b4897a36cd23c1a8105771d01 corporate/3.0/i586/OpenOffice.org-l10n-tr-1.1.2-9.8.C30mdk.i586.rpm

1e346f7702fb5e8ccd80089c45286131 corporate/3.0/i586/OpenOffice.org-l10n-zh_CN-1.1.2-9.8.C30mdk.i586.rpm

2736ecc2da35d45b5e8690f294fac893 corporate/3.0/i586/OpenOffice.org-l10n-zh_TW-1.1.2-9.8.C30mdk.i586.rpm

09bcbe78beb75e74c9a020c5a877e5e0 corporate/3.0/i586/OpenOffice.org-libs-1.1.2-9.8.C30mdk.i586.rpm

b0a3478773ac1f8ff9297a5e025cdffd corporate/3.0/SRPMS/OpenOffice.org-1.1.2-9.8.C30mdk.src.rpm

 

Corporate 3.0/X86_64:

eaed00b902866c1c8eaeb0b2283963d0 corporate/3.0/x86_64/OpenOffice.org-1.1.2-9.8.C30mdk.i586.rpm

bf24fd6b79476d4622e05cf52efc31b6 corporate/3.0/x86_64/OpenOffice.org-help-cs-1.1.2-9.8.C30mdk.i586.rpm

b031829e937a98b47495d012d827a2ca corporate/3.0/x86_64/OpenOffice.org-help-de-1.1.2-9.8.C30mdk.i586.rpm

9b10b493fa4914ba8c74f4611f65e842 corporate/3.0/x86_64/OpenOffice.org-help-en-1.1.2-9.8.C30mdk.i586.rpm

50a300e7cc3bb7032ca2270a6584e7f1 corporate/3.0/x86_64/OpenOffice.org-help-es-1.1.2-9.8.C30mdk.i586.rpm

13fd968bec6ee8e809160a407683312e corporate/3.0/x86_64/OpenOffice.org-help-eu-1.1.2-9.8.C30mdk.i586.rpm

be1db7b2a1476777c4b6c3b4fbb0305c corporate/3.0/x86_64/OpenOffice.org-help-fi-1.1.2-9.8.C30mdk.i586.rpm

653c73506f66f450ddbb6df1455a0f28 corporate/3.0/x86_64/OpenOffice.org-help-fr-1.1.2-9.8.C30mdk.i586.rpm

c4995cdcf690ac560fb7865f2b43ea42 corporate/3.0/x86_64/OpenOffice.org-help-it-1.1.2-9.8.C30mdk.i586.rpm

70fc99ebe87f29f31a9e71f5e79cf119 corporate/3.0/x86_64/OpenOffice.org-help-ja-1.1.2-9.8.C30mdk.i586.rpm

e95922eb1d683732df7050e0c4bbe1b5 corporate/3.0/x86_64/OpenOffice.org-help-ko-1.1.2-9.8.C30mdk.i586.rpm

2e5edaee26d9b7905167f244ad526ae8 corporate/3.0/x86_64/OpenOffice.org-help-nl-1.1.2-9.8.C30mdk.i586.rpm

0f98d1ab2f920c126fc95ff74cf35c47 corporate/3.0/x86_64/OpenOffice.org-help-ru-1.1.2-9.8.C30mdk.i586.rpm

87d2b1a3ad0ff1fdc30683fb264f58e5 corporate/3.0/x86_64/OpenOffice.org-help-sk-1.1.2-9.8.C30mdk.i586.rpm

949422a12ca88487a452612e39df2160 corporate/3.0/x86_64/OpenOffice.org-help-sv-1.1.2-9.8.C30mdk.i586.rpm

95ff06b7fe59c3df9908181c33638372 corporate/3.0/x86_64/OpenOffice.org-help-zh_CN-1.1.2-9.8.C30mdk.i586.rpm

78d40f885eafc5809381d1d57c816519 corporate/3.0/x86_64/OpenOffice.org-help-zh_TW-1.1.2-9.8.C30mdk.i586.rpm

24906531c4d47ea9fffce68a250ed6da corporate/3.0/x86_64/OpenOffice.org-l10n-ar-1.1.2-9.8.C30mdk.i586.rpm

331a54961505ee187fa13340ec8079e5 corporate/3.0/x86_64/OpenOffice.org-l10n-ca-1.1.2-9.8.C30mdk.i586.rpm

0abb0186fc8f63b069cf004161c9d1c3 corporate/3.0/x86_64/OpenOffice.org-l10n-cs-1.1.2-9.8.C30mdk.i586.rpm

31f95f5bd774a6101d335896c2e80933 corporate/3.0/x86_64/OpenOffice.org-l10n-da-1.1.2-9.8.C30mdk.i586.rpm

573e67b672aac283ec82da40f8dcdbe7 corporate/3.0/x86_64/OpenOffice.org-l10n-de-1.1.2-9.8.C30mdk.i586.rpm

09a27986fd26185fa95d728f64cc504b corporate/3.0/x86_64/OpenOffice.org-l10n-el-1.1.2-9.8.C30mdk.i586.rpm

184f512d92fdf1cef17815dbc026ff64 corporate/3.0/x86_64/OpenOffice.org-l10n-en-1.1.2-9.8.C30mdk.i586.rpm

a9d7d0756b8ff7bf93ef79637ebe0d91 corporate/3.0/x86_64/OpenOffice.org-l10n-es-1.1.2-9.8.C30mdk.i586.rpm

a24bade71e643457292e26fb0a757b29 corporate/3.0/x86_64/OpenOffice.org-l10n-et-1.1.2-9.8.C30mdk.i586.rpm

ed09d190049fb616ac53870aaf8dc2b1 corporate/3.0/x86_64/OpenOffice.org-l10n-eu-1.1.2-9.8.C30mdk.i586.rpm

4d10f93feb1db22e54a54be823720d03 corporate/3.0/x86_64/OpenOffice.org-l10n-fi-1.1.2-9.8.C30mdk.i586.rpm

af9b15cc21bc662dd41b7268dd8cad41 corporate/3.0/x86_64/OpenOffice.org-l10n-fr-1.1.2-9.8.C30mdk.i586.rpm

29964c4daaf151c7b285f1bb8cde2483 corporate/3.0/x86_64/OpenOffice.org-l10n-it-1.1.2-9.8.C30mdk.i586.rpm

c6471477d16534ab002df1bae8b31c81 corporate/3.0/x86_64/OpenOffice.org-l10n-ja-1.1.2-9.8.C30mdk.i586.rpm

731b7f73869021ba95c637a82f75fdfd corporate/3.0/x86_64/OpenOffice.org-l10n-ko-1.1.2-9.8.C30mdk.i586.rpm

e7eb5b528a69999ebe7c12354da80608 corporate/3.0/x86_64/OpenOffice.org-l10n-nb-1.1.2-9.8.C30mdk.i586.rpm

77da476ad22bc682461b0fbc640eb2b5 corporate/3.0/x86_64/OpenOffice.org-l10n-nl-1.1.2-9.8.C30mdk.i586.rpm

939eab8147b526f7c019de12b8e08ad6 corporate/3.0/x86_64/OpenOffice.org-l10n-nn-1.1.2-9.8.C30mdk.i586.rpm

6d5a7f915e5574cf59d1c0d777866012 corporate/3.0/x86_64/OpenOffice.org-l10n-pl-1.1.2-9.8.C30mdk.i586.rpm

73eed8d49e422b81bf84efeb79ad4b4d corporate/3.0/x86_64/OpenOffice.org-l10n-pt-1.1.2-9.8.C30mdk.i586.rpm

01244314ce931ea0b7c6de5720cc5b35 corporate/3.0/x86_64/OpenOffice.org-l10n-pt_BR-1.1.2-9.8.C30mdk.i586.rpm

40c795c59a4cce94e5607275e81acfc6 corporate/3.0/x86_64/OpenOffice.org-l10n-ru-1.1.2-9.8.C30mdk.i586.rpm

0a2fb11ff8f69da2c567b9bf2c8d87f5 corporate/3.0/x86_64/OpenOffice.org-l10n-sk-1.1.2-9.8.C30mdk.i586.rpm

f64c1aac24a68aff80b5611aa9e8764e corporate/3.0/x86_64/OpenOffice.org-l10n-sv-1.1.2-9.8.C30mdk.i586.rpm

0e1a641b4897a36cd23c1a8105771d01 corporate/3.0/x86_64/OpenOffice.org-l10n-tr-1.1.2-9.8.C30mdk.i586.rpm

1e346f7702fb5e8ccd80089c45286131 corporate/3.0/x86_64/OpenOffice.org-l10n-zh_CN-1.1.2-9.8.C30mdk.i586.rpm

2736ecc2da35d45b5e8690f294fac893 corporate/3.0/x86_64/OpenOffice.org-l10n-zh_TW-1.1.2-9.8.C30mdk.i586.rpm

09bcbe78beb75e74c9a020c5a877e5e0 corporate/3.0/x86_64/OpenOffice.org-libs-1.1.2-9.8.C30mdk.i586.rpm

b0a3478773ac1f8ff9297a5e025cdffd corporate/3.0/SRPMS/OpenOffice.org-1.1.2-9.8.C30mdk.src.rpm

_______________________________________________________________________

 

To upgrade automatically use MandrivaUpdate or urpmi. The verification

of md5 checksums and GPG signatures is performed automatically for you.

 

All packages are signed by Mandriva for security. You can obtain the

GPG public key of the Mandriva Security Team by executing:

 

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 

You can view other update advisories for Mandriva Linux at:

 

http://www.mandriva.com/security/advisories

 

If you want to report vulnerabilities, please contact

 

security_(at)_mandriva.com

_______________________________________________________________________

 

Type Bits/KeyID Date User ID

pub 1024D/22458A98 2000-07-10 Mandriva Security Team

 

-----BEGIN PGP SIGNATURE-----

Version: GnuPG v1.4.9 (GNU/Linux)

 

iD8DBQFICuAomqjQ0CJFipgRArJxAJ9NCncm6+/Tp9+DQ4O4IUq3EP5amwCfQA84

GVqx4TV0IqDdWzvQy3aCfc8=

=kd+X

-----END PGP SIGNATURE-----

 

 

------------=_1208683580-11275-2963

Content-Type: text/plain; name="message-footer.txt"

Content-Disposition: inline; filename="message-footer.txt"

Content-Transfer-Encoding: 8bit

 

To unsubscribe, send a email to sympa ( -at -) mandrivalinux.org

with this subject : unsubscribe security-announce

_______________________________________________________

Want to buy your Pack or Services from Mandriva?

Go to http://www.mandrivastore.com

Join the Club : http://www.mandrivaclub.com

_______________________________________________________

 

------------=_1208683580-11275-2963--

 

 

Share this post

Link to post

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
Sign in to follow this  
Followers 0
Go To Topic Listing Upcoming News
×