To comment on the following update, log in, then open the issue: http://www.openoffice.org/issues/show_bug.cgi?id=75734
------- Additional comments from [EMAIL PROTECTED] Mon Mar 26 09:21:10 +0000 2007 ------- according to http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=416038 our at least 1.7 - shipped in Debian stable -- is also affected (maybe then the even older 1.6, too?) The changelog for the sid update says some details: nas (1.8-4) unstable; urgency=high . * High-urgency upload to fix multiple security holes (CVE-2007-1543, CVE-2007-1544, CVE-2007-1545, CVE-2007-1546 and CVE-2007-1547): + accept_att_local buffer overflow through USL connection + server termination through unexistent ID in AddResource + bcopy crash caused by integer overflow in ProcAuWriteElement + invalid memory pointer caused by big num_actions in ProcAuSetElements + another invalid memory pointer caused by big num_actions in ProcAuSetElements + invalid memory pointer in compileInputs + exploits bug 3 in read mode (requires something playing on the server) + NULL pointer caused by too much connections + Closes: #416038 --------------------------------------------------------------------- Please do not reply to this automatically generated notification from Issue Tracker. Please log onto the website and enter your comments. http://qa.openoffice.org/issue_handling/project_issues.html#notification --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]