(RHSA-2008:0537) Important: openoffice.org security update

2008-06-1200:00:00

access.redhat.com

0.087 Low

EPSS

Percentile

94.5%

JSON

OpenOffice.org is an office productivity suite that includes desktop
applications such as a word processor, spreadsheet, presentation manager,
formula editor, and drawing program.

Sean Larsson found a heap overflow flaw in the OpenOffice memory allocator.
If a carefully crafted file was opened by a victim, an attacker could use
the flaw to crash OpenOffice.org or, possibly, execute arbitrary code.
(CVE-2008-2152)

All users of OpenOffice.org are advised to upgrade to these updated
packages, which contain a backported fix to correct this issue.

OSVersionArchitecturePackageVersionFilename
RedHatanyi386openoffice.org2-langpack-he_il< 2.0.4-5.7.0.5.0openoffice.org2-langpack-he_IL-2.0.4-5.7.0.5.0.i386.rpm
RedHatanyi386openoffice.org2-langpack-es< 2.0.4-5.7.0.5.0openoffice.org2-langpack-es-2.0.4-5.7.0.5.0.i386.rpm
RedHatanyi386openoffice.org2-langpack-zh_cn< 2.0.4-5.7.0.5.0openoffice.org2-langpack-zh_CN-2.0.4-5.7.0.5.0.i386.rpm
RedHatanyi386openoffice.org2-langpack-hr_hr< 2.0.4-5.7.0.5.0openoffice.org2-langpack-hr_HR-2.0.4-5.7.0.5.0.i386.rpm
RedHat5i386openoffice.org-sdk< 2.3.0-6.5.1.el5_2openoffice.org-sdk-2.3.0-6.5.1.el5_2.i386.rpm
RedHatanyppcopenoffice.org2-langpack-bg_bg< 2.0.4-5.7.0.5.0openoffice.org2-langpack-bg_BG-2.0.4-5.7.0.5.0.ppc.rpm
RedHatanyi386openoffice.org2-langpack-ms_my< 2.0.4-5.7.0.5.0openoffice.org2-langpack-ms_MY-2.0.4-5.7.0.5.0.i386.rpm
RedHat5x86_64openoffice.org-langpack-xh_za< 2.3.0-6.5.1.el5_2openoffice.org-langpack-xh_ZA-2.3.0-6.5.1.el5_2.x86_64.rpm
RedHat5x86_64openoffice.org-math< 2.3.0-6.5.1.el5_2openoffice.org-math-2.3.0-6.5.1.el5_2.x86_64.rpm
RedHat5x86_64openoffice.org-langpack-ss_za< 2.3.0-6.5.1.el5_2openoffice.org-langpack-ss_ZA-2.3.0-6.5.1.el5_2.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	any	i386	openoffice.org2-langpack-he_il	< 2.0.4-5.7.0.5.0	openoffice.org2-langpack-he_IL-2.0.4-5.7.0.5.0.i386.rpm
RedHat	any	i386	openoffice.org2-langpack-es	< 2.0.4-5.7.0.5.0	openoffice.org2-langpack-es-2.0.4-5.7.0.5.0.i386.rpm
RedHat	any	i386	openoffice.org2-langpack-zh_cn	< 2.0.4-5.7.0.5.0	openoffice.org2-langpack-zh_CN-2.0.4-5.7.0.5.0.i386.rpm
RedHat	any	i386	openoffice.org2-langpack-hr_hr	< 2.0.4-5.7.0.5.0	openoffice.org2-langpack-hr_HR-2.0.4-5.7.0.5.0.i386.rpm
RedHat	5	i386	openoffice.org-sdk	< 2.3.0-6.5.1.el5_2	openoffice.org-sdk-2.3.0-6.5.1.el5_2.i386.rpm
RedHat	any	ppc	openoffice.org2-langpack-bg_bg	< 2.0.4-5.7.0.5.0	openoffice.org2-langpack-bg_BG-2.0.4-5.7.0.5.0.ppc.rpm
RedHat	any	i386	openoffice.org2-langpack-ms_my	< 2.0.4-5.7.0.5.0	openoffice.org2-langpack-ms_MY-2.0.4-5.7.0.5.0.i386.rpm
RedHat	5	x86_64	openoffice.org-langpack-xh_za	< 2.3.0-6.5.1.el5_2	openoffice.org-langpack-xh_ZA-2.3.0-6.5.1.el5_2.x86_64.rpm
RedHat	5	x86_64	openoffice.org-math	< 2.3.0-6.5.1.el5_2	openoffice.org-math-2.3.0-6.5.1.el5_2.x86_64.rpm
RedHat	5	x86_64	openoffice.org-langpack-ss_za	< 2.3.0-6.5.1.el5_2	openoffice.org-langpack-ss_ZA-2.3.0-6.5.1.el5_2.x86_64.rpm