Your submission was sent successfully! Close

USN-188-1: AbiWord vulnerability

29 September 2005

AbiWord vulnerability



Chris Evans discovered a buffer overflow in the RTF import module of
AbiWord. By tricking a user into opening an RTF file with specially
crafted long identifiers, an attacker could exploit this to execute
arbitrary code with the privileges of the AbiWord user.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 5.04
  • abiword-gnome -
  • abiword -
Ubuntu 4.10
  • abiword-gnome -
  • abiword -

In general, a standard system update will make all the necessary changes.