USN-406-1: OpenOffice.org vulnerability

12 January 2007

OpenOffice.org vulnerability

Releases

Details

An integer overflow was discovered in OpenOffice.org's handling of WMF
files. If a user were tricked into opening a specially crafted WMF
file, an attacker could execute arbitrary code with user privileges.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 6.06
  • openoffice.org-core - 2.0.2-2ubuntu12.2
Ubuntu 5.10
  • openoffice.org2-core - 1.9.129-0.1ubuntu4.2

In general, a standard system upgrade is sufficient to effect the
necessary changes.

References