Fedora: 2004-102 Critical: OpenOffice Format String Issue - Arbitrary Code

OpenOffice.org is an Open Source, community-developed, multi-platform

office productivity suite. It includes the key desktop applications,

such as a word processor, spreadsheet, presentation manager, formula

editor and drawing program, with a user interface and feature set

similar to other office suites. Sophisticated and flexible,

OpenOffice.org also works transparently with a variety of file

formats, including Microsoft Office.

Usage: Simply type "ooffice" to run OpenOffice.org or select the

requested component (Writer, Calc, Draw, Impress, etc.) from your

desktop menu. The ooffice wrapper script will install a few files in

the user's home, if necessary.

Note that this release does not support GPC polygon clipping, but

instead uses libart to do the same thing.

The OpenOffice.org team hopes you enjoy working with OpenOffice.org!

This update fixes a security vulnerability in the neon included in OpenOffice.org (CAN-2004-0179). It also explicitly adds a dependency on Mozilla which has always existed. This dependency will be removed again in the next update since it appears to cause problems however. * Mon Apr 05 2004 Dan Williams <dcbw@redhat.com> 1.1.0-15

- Fix CAN-2004-0179 (neon format string vuln) - Add missing Mozilla Requires:

* Fri Mar 12 2004 Dan Williams <dcbw@redhat.com> 1.1.0-14

- Detect and use Agfa Monotype fonts - Add font replacements for Century Gothic and Verdana - Don't die when TrueType fonts have bad name table strings (RH #117440)

* Tue Feb 10 2004 Dan Williams <dcbw@redhat.com> 1.1.0-13

- Remove OOo setup menu entry - Remove some python test stuff too - Delete the ~/.openoffice/user/work link when upgrading since people seem to inadvertently wipe their home directories because of it

* Fri Feb 06 2004 Dan Williams <dcbw@redhat.com> 1.1.0-12

- Remove creation ...