© 2013 Pro-Linux
Pufferüberläufe in OpenOffice.org
| ID: | USN-1537-1 |
| Distribution: | Ubuntu |
| Plattformen: | Ubuntu 10.04 LTS |
| Datum: | Di, 14. August 2012, 07:21 |
| Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2665 |
Originalnachricht |
|
--===============3847783414214222816== Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="=-N2beY8wG/jwdHOCL/jbz" --=-N2beY8wG/jwdHOCL/jbz Content-Type: text/plain; charset="UTF-8 Content-Transfer-Encoding: quoted-printable ========================================================================== Ubuntu Security Notice USN-1537-1 August 13, 2012 openoffice.org vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 10.04 LTS Summary: OpenOffice.org could be made to crash or run programs as your login if it opened a specially crafted file. Software Description: - openoffice.org: Office productivity suite Details: It was discovered that OpenOffice.org incorrectly handled certain encryption tags in Open Document Text (.odt) files. If a user were tricked into opening a specially crafted file, an attacker could cause OpenOffice.org to crash or possibly execute arbitrary code with the privileges of the user invoking the program. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 10.04 LTS: openoffice.org-core 1:3.2.0-7ubuntu4.4 After a standard system update you need to restart OpenOffice.org to make all the necessary changes. References: http://www.ubuntu.com/usn/usn-1537-1 CVE-2012-2665 Package Information: https://launchpad.net/ubuntu/+source/openoffice.org/1:3.2.0-7ubuntu4.4 --×2beY8wG/jwdHOCL/jbz Content-Type: application/pgp-signature; name="signature.asc" Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQIcBAABCgAGBQJQKawYAAoJEGVp2FWnRL6THB8QAK5sdNG5T43KnQDfhHSBLAzP hZ1CvACX+asRWmwszpV7p1RpTXizN0euKidmJiQyKjKQzpxYeMdxi5dCOTFMO/XC jeB6d4Yxvmpc3fgxoyKT9rYlWxNWyT7dL3SH+Np8lTNGxKrL9Ha6xBy1vJpG585s 5la8LkaTmcLgK4nXYRXG8aipRQuz3z3sgyVlfgcJ16rFnQ5VEMcnopiN0JWCQMPr zuWYF8vleBoTXTDy6GAciRmEBDVQqLGyivH//WDDUY8PTK8AenFGcVatZGVbVUSd HQLQjt4sqcrTPUNI9w/IGKACMeFfV4mWd+B2V6AO/BnmePDRyvHVq/lMkO5vO8bw XR/s2NqPrraQXA1Pvsx9PNm94Tceeg82YryppqRmeKhE1gztZdd5XoKlfpe8PUDt R0ykBEfpquTkNlKfFztLj6V7Vw1htROaLOzCMxVyuLDrGe4A1mdK+O9g60NlNBCF 7L9dK1/NMg/J4nQy5sDRUQrgMCm7B/+LIEcg+a6qGDFcGtdGAA8PX5fhNqdG8HBI AkM9WOYOYlnEuSIivaXTBJJeS5J+WTI4+NjomXJrvIHYVNE6+OsIPRrcRoYYik/7 m37pr+SfQ/DqbWGytyqMDjsYBrJeuwAwmMQouvc0iyoRaNsKkRZeXdcf6frrUUpY I0/7PcnbzFmale9vXV9o =kQir -----END PGP SIGNATURE----- --=-N2beY8wG/jwdHOCL/jbz-- --===============3847783414214222816== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline -- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce --===============3847783414214222816==-- | |