USN-1537-1: OpenOffice.org vulnerability
13 August 2012
OpenOffice.org could be made to crash or run programs as your login if it opened a specially crafted file.
Releases
Packages
- openoffice.org - Office productivity suite
Details
It was discovered that OpenOffice.org incorrectly handled certain
encryption tags in Open Document Text (.odt) files. If a user were tricked
into opening a specially crafted file, an attacker could cause
OpenOffice.org to crash or possibly execute arbitrary code with the
privileges of the user invoking the program.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 10.04
After a standard system update you need to restart OpenOffice.org to make
all the necessary changes.