SciLinux: CVE-2009-2949 Important: openoffice.org SL3.x i386/x86_64
Summary
CVE-2009-2949 openoffice.org: integer overflow in XPM processingCVE-2009-3301 OpenOffice.org Word sprmTDefTable Memory CorruptionCVE-2009-3302 OpenOffice.org Word sprmTSetBrc Memory CorruptionAn integer overflow flaw, leading to a heap-based buffer overflow, wasfound in the way OpenOffice.org parsed XPM files. An attacker couldcreate a specially-crafted document, which once opened by a local,unsuspecting user, could lead to arbitrary code execution with thepermissions of the user running OpenOffice.org. Note: This flaw affectsembedded XPM files in OpenOffice.org documents as well as stand-aloneXPM files. (CVE-2009-2949)An integer underflow flaw and a boundary error flaw, both possiblyleading to a heap-based buffer overflow, were found in the wayOpenOffice.org parsed certain records in Microsoft Word documents. Anattacker could create a specially-crafted Microsoft Word document, whichonce opened by a local, unsuspecting user, could cause OpenOffice.org tocrash or, potentially, execute arbitrary code with the permissions ofthe user running OpenOffice.org. (CVE-2009-3301, CVE-2009-3302)A heap-based buffer overflow flaw, leading to memory corruption, wasfound in the way OpenOffice.org parsed GIF files. An attacker couldcreate a specially-crafted document, which once opened by a local,unsuspecting user, could cause OpenOffice.org to crash. Note: This flawaffects embedded GIF files in OpenOffice.org documents as well asstand-alone GIF files. (CVE-2009-2950)All running instances of OpenOffice.org applications must be restartedfor this update to take effect.SL 3.0.xSRPMS:openoffice.org-1.1.2-46.2.0.EL3.src.rpmi386:openoffice.org-1.1.2-46.2.0.EL3.i386.rpmopenoffice.org-i18n-1.1.2-46.2.0.EL3.i386.rpmopenoffice.org-libs-1.1.2-46.2.0.EL3.i386.rpmx86_64:openoffice.org-1.1.2-46.2.0.EL3.i386.rpmopenoffice.org-i18n-1.1.2-46.2.0.EL3.i386.rpmopenoffice.org-libs-1.1.2-46.2.0.EL3.i386.rpm-Connie Sieh-Troy Dawson