CVE-2008-2152
Published: 10 June 2008
Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in OpenOffice.org (OOo) 2.0 through 2.4 allows remote attackers to execute arbitrary code via a crafted file that triggers a heap-based buffer overflow.
Priority
Status
Package | Release | Status |
---|---|---|
openoffice.org Launchpad, Ubuntu, Debian |
dapper |
Not vulnerable
(built with --with-alloc=system)
|
feisty |
Not vulnerable
(built with --with-alloc=system)
|
|
gutsy |
Not vulnerable
(built with --with-alloc=system)
|
|
hardy |
Not vulnerable
(built with --with-alloc=system)
|
|
upstream |
Needs triage
|