New Search

RHSA-2008:0835 -- openoffice.org security update (Important)

oval:org.mitre.oval:def:29162

Updated openoffice.org packages that fix a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenOffice.org is an office productivity suite that includes desktop applications such as a word processor spreadsheet presentation manager formula editor and a drawing program. A numeric truncation error was found in the OpenOffice.org memory allocator. If a carefully crafted file was opened by a victim an attacker could use this flaw to crash OpenOffice.org or possibly execute arbitrary code. (CVE-2008-3282) All users of openoffice.org are advised to upgrade to these updated packages which contain a backported patch to correct this issue.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • CentOS Linux 5
  • Red Hat Enterprise Linux 5
Class:
patch
Reference(s):
  • RHSA-2008:0835
  • CESA-2008:0835-CentOS 5
  • CVE-2008-3282
Product(s):
  • openoffice.org