Bug#405986: CVE-2006-5870: OpenOffice WMF/EMF Integer Overflow Vulnerability

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#405986: CVE-2006-5870: OpenOffice WMF/EMF Integer Overflow Vulnerability
From: Stefan Fritsch <sf@sfritsch.de>
Date: Sun, 07 Jan 2007 19:27:09 +0100
Message-id: <[🔎] 20070107182709.26257.53729.reportbug@k.lan>
Reply-to: Stefan Fritsch <sf@sfritsch.de>, 405986@bugs.debian.org

Package: openoffice.org-bin
Severity: grave
Tags: security patch
Justification: user security hole

>From http://secunia.com/advisories/23612/ :

A vulnerability has been reported in OpenOffice, which potentially
can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to integer overflows within the
processor for WMF/EMF files. This can be exploited to cause a
heap-based buffer overflow by e.g. tricking a user into opening a
specially crafted WMF/EMF file.

Successful exploitation may allow the execution of arbitrary code.

A patch is at
http://www.openoffice.org/issues/show_bug.cgi?id=70042

Please mention the CVE id in the changelog.

Reply to:

Follow-Ups:
- Bug#405986: CVE-2006-5870: OpenOffice WMF/EMF Integer Overflow Vulnerability
  - From: Rene Engelhard <rene@debian.org>

Prev by Date: Bug#405950: empty file names in OpenOffice open-file-dialog
Next by Date: dmaths packaging.
Previous by thread: Processed: Re: Bug#405949: Arcoread gif's with transparencies
Next by thread: Bug#405986: CVE-2006-5870: OpenOffice WMF/EMF Integer Overflow Vulnerability
Index(es):
- Date
- Thread