CVE-2009-2949

Published: 16 February 2010

Integer overflow in the XPMReader::ReadXPM function in filter.vcl/ixpm/svt_xpmread.cxx in OpenOffice.org (OOo) before 3.2 allows remote attackers to execute arbitrary code via a crafted XPM file that triggers a heap-based buffer overflow.

Priority

Medium

Status

Package Release Status
openoffice.org
Launchpad, Ubuntu, Debian
Upstream
Released (3.2)