Описание
Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text (.odt) file with (1) a child tag within an incorrect parent tag, (2) duplicate tags, or (3) a Base64 ChecksumAttribute whose length is not evenly divisible by four.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1:3.6.0~rc4-0ubuntu3 |
| hardy | DNE | |
| lucid | DNE | |
| natty | released | 1:3.3.4-0ubuntu1.4 |
| oneiric | released | 1:3.4.4-0ubuntu1.4 |
| precise | released | 1:3.5.4-0ubuntu1.1 |
| upstream | pending | 3.5.5 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | ignored | end of life |
| lucid | released | 1:3.2.0-7ubuntu4.4 |
| natty | not-affected | transitional packages |
| oneiric | not-affected | transitional packages |
| precise | not-affected | transitional packages |
| upstream | needs-triage |
Показывать по
7.5 High
CVSS2
Связанные уязвимости
Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text (.odt) file with (1) a child tag within an incorrect parent tag, (2) duplicate tags, or (3) a Base64 ChecksumAttribute whose length is not evenly divisible by four.
Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text (.odt) file with (1) a child tag within an incorrect parent tag, (2) duplicate tags, or (3) a Base64 ChecksumAttribute whose length is not evenly divisible by four.
Multiple heap-based buffer overflows in the XML manifest encryption ta ...
Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text (.odt) file with (1) a child tag within an incorrect parent tag, (2) duplicate tags, or (3) a Base64 ChecksumAttribute whose length is not evenly divisible by four.
7.5 High
CVSS2