Package: openoffice.org-bin Severity: grave Tags: security patch Justification: user security hole
>From http://secunia.com/advisories/23612/ : A vulnerability has been reported in OpenOffice, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to integer overflows within the processor for WMF/EMF files. This can be exploited to cause a heap-based buffer overflow by e.g. tricking a user into opening a specially crafted WMF/EMF file. Successful exploitation may allow the execution of arbitrary code. A patch is at http://www.openoffice.org/issues/show_bug.cgi?id=70042 Please mention the CVE id in the changelog. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
