Mandriva

Package name OpenOffice.org Date April 20th, 2008 Advisory ID MDVSA-2008:090 Affected versions CS3.0 Synopsis Updated OpenOffice.org packages fix vulnerabilities

Problem Description

A heap overflow was discovered in OpenOffice.org's EMF parser.
An attacker could create a carefully crafted EMF file that could
cause OpenOffice.org to crash or potentially execute arbitrary code
if the malicious EMF image was added to a document or if a document
containing such an EMF file was opened (CVE-2007-5746).

A heap overflow was discovered in the OLE Structured Storage file
parser, a format used by Microsoft Office documents. An attacker could
create a carefully crafted OLE file that could cause OpenOffice.org
to crash or potentially execute arbitrary code (CVE-2008-0320).

The updated packages have been patched to correct these issues.

Updated Packages

Corporate Server 3.0

 eaed00b902866c1c8eaeb0b2283963d0  corporate/3.0/i586/OpenOffice.org-1.1.2-9.8.C30mdk.i586.rpm
 bf24fd6b79476d4622e05cf52efc31b6  corporate/3.0/i586/OpenOffice.org-help-cs-1.1.2-9.8.C30mdk.i586.rpm
 b031829e937a98b47495d012d827a2ca  corporate/3.0/i586/OpenOffice.org-help-de-1.1.2-9.8.C30mdk.i586.rpm
 9b10b493fa4914ba8c74f4611f65e842  corporate/3.0/i586/OpenOffice.org-help-en-1.1.2-9.8.C30mdk.i586.rpm
 50a300e7cc3bb7032ca2270a6584e7f1  corporate/3.0/i586/OpenOffice.org-help-es-1.1.2-9.8.C30mdk.i586.rpm
 13fd968bec6ee8e809160a407683312e  corporate/3.0/i586/OpenOffice.org-help-eu-1.1.2-9.8.C30mdk.i586.rpm
 be1db7b2a1476777c4b6c3b4fbb0305c  corporate/3.0/i586/OpenOffice.org-help-fi-1.1.2-9.8.C30mdk.i586.rpm
 653c73506f66f450ddbb6df1455a0f28  corporate/3.0/i586/OpenOffice.org-help-fr-1.1.2-9.8.C30mdk.i586.rpm
 c4995cdcf690ac560fb7865f2b43ea42  corporate/3.0/i586/OpenOffice.org-help-it-1.1.2-9.8.C30mdk.i586.rpm
 70fc99ebe87f29f31a9e71f5e79cf119  corporate/3.0/i586/OpenOffice.org-help-ja-1.1.2-9.8.C30mdk.i586.rpm
 e95922eb1d683732df7050e0c4bbe1b5  corporate/3.0/i586/OpenOffice.org-help-ko-1.1.2-9.8.C30mdk.i586.rpm
 2e5edaee26d9b7905167f244ad526ae8  corporate/3.0/i586/OpenOffice.org-help-nl-1.1.2-9.8.C30mdk.i586.rpm
 0f98d1ab2f920c126fc95ff74cf35c47  corporate/3.0/i586/OpenOffice.org-help-ru-1.1.2-9.8.C30mdk.i586.rpm
 87d2b1a3ad0ff1fdc30683fb264f58e5  corporate/3.0/i586/OpenOffice.org-help-sk-1.1.2-9.8.C30mdk.i586.rpm
 949422a12ca88487a452612e39df2160  corporate/3.0/i586/OpenOffice.org-help-sv-1.1.2-9.8.C30mdk.i586.rpm
 95ff06b7fe59c3df9908181c33638372  corporate/3.0/i586/OpenOffice.org-help-zh_CN-1.1.2-9.8.C30mdk.i586.rpm
 78d40f885eafc5809381d1d57c816519  corporate/3.0/i586/OpenOffice.org-help-zh_TW-1.1.2-9.8.C30mdk.i586.rpm
 24906531c4d47ea9fffce68a250ed6da  corporate/3.0/i586/OpenOffice.org-l10n-ar-1.1.2-9.8.C30mdk.i586.rpm
 331a54961505ee187fa13340ec8079e5  corporate/3.0/i586/OpenOffice.org-l10n-ca-1.1.2-9.8.C30mdk.i586.rpm
 0abb0186fc8f63b069cf004161c9d1c3  corporate/3.0/i586/OpenOffice.org-l10n-cs-1.1.2-9.8.C30mdk.i586.rpm
 31f95f5bd774a6101d335896c2e80933  corporate/3.0/i586/OpenOffice.org-l10n-da-1.1.2-9.8.C30mdk.i586.rpm
 573e67b672aac283ec82da40f8dcdbe7  corporate/3.0/i586/OpenOffice.org-l10n-de-1.1.2-9.8.C30mdk.i586.rpm
 09a27986fd26185fa95d728f64cc504b  corporate/3.0/i586/OpenOffice.org-l10n-el-1.1.2-9.8.C30mdk.i586.rpm
 184f512d92fdf1cef17815dbc026ff64  corporate/3.0/i586/OpenOffice.org-l10n-en-1.1.2-9.8.C30mdk.i586.rpm
 a9d7d0756b8ff7bf93ef79637ebe0d91  corporate/3.0/i586/OpenOffice.org-l10n-es-1.1.2-9.8.C30mdk.i586.rpm
 a24bade71e643457292e26fb0a757b29  corporate/3.0/i586/OpenOffice.org-l10n-et-1.1.2-9.8.C30mdk.i586.rpm
 ed09d190049fb616ac53870aaf8dc2b1  corporate/3.0/i586/OpenOffice.org-l10n-eu-1.1.2-9.8.C30mdk.i586.rpm
 4d10f93feb1db22e54a54be823720d03  corporate/3.0/i586/OpenOffice.org-l10n-fi-1.1.2-9.8.C30mdk.i586.rpm
 af9b15cc21bc662dd41b7268dd8cad41  corporate/3.0/i586/OpenOffice.org-l10n-fr-1.1.2-9.8.C30mdk.i586.rpm
 29964c4daaf151c7b285f1bb8cde2483  corporate/3.0/i586/OpenOffice.org-l10n-it-1.1.2-9.8.C30mdk.i586.rpm
 c6471477d16534ab002df1bae8b31c81  corporate/3.0/i586/OpenOffice.org-l10n-ja-1.1.2-9.8.C30mdk.i586.rpm
 731b7f73869021ba95c637a82f75fdfd  corporate/3.0/i586/OpenOffice.org-l10n-ko-1.1.2-9.8.C30mdk.i586.rpm
 e7eb5b528a69999ebe7c12354da80608  corporate/3.0/i586/OpenOffice.org-l10n-nb-1.1.2-9.8.C30mdk.i586.rpm
 77da476ad22bc682461b0fbc640eb2b5  corporate/3.0/i586/OpenOffice.org-l10n-nl-1.1.2-9.8.C30mdk.i586.rpm
 939eab8147b526f7c019de12b8e08ad6  corporate/3.0/i586/OpenOffice.org-l10n-nn-1.1.2-9.8.C30mdk.i586.rpm
 6d5a7f915e5574cf59d1c0d777866012  corporate/3.0/i586/OpenOffice.org-l10n-pl-1.1.2-9.8.C30mdk.i586.rpm
 73eed8d49e422b81bf84efeb79ad4b4d  corporate/3.0/i586/OpenOffice.org-l10n-pt-1.1.2-9.8.C30mdk.i586.rpm
 01244314ce931ea0b7c6de5720cc5b35  corporate/3.0/i586/OpenOffice.org-l10n-pt_BR-1.1.2-9.8.C30mdk.i586.rpm
 40c795c59a4cce94e5607275e81acfc6  corporate/3.0/i586/OpenOffice.org-l10n-ru-1.1.2-9.8.C30mdk.i586.rpm
 0a2fb11ff8f69da2c567b9bf2c8d87f5  corporate/3.0/i586/OpenOffice.org-l10n-sk-1.1.2-9.8.C30mdk.i586.rpm
 f64c1aac24a68aff80b5611aa9e8764e  corporate/3.0/i586/OpenOffice.org-l10n-sv-1.1.2-9.8.C30mdk.i586.rpm
 0e1a641b4897a36cd23c1a8105771d01  corporate/3.0/i586/OpenOffice.org-l10n-tr-1.1.2-9.8.C30mdk.i586.rpm
 1e346f7702fb5e8ccd80089c45286131  corporate/3.0/i586/OpenOffice.org-l10n-zh_CN-1.1.2-9.8.C30mdk.i586.rpm
 2736ecc2da35d45b5e8690f294fac893  corporate/3.0/i586/OpenOffice.org-l10n-zh_TW-1.1.2-9.8.C30mdk.i586.rpm
 09bcbe78beb75e74c9a020c5a877e5e0  corporate/3.0/i586/OpenOffice.org-libs-1.1.2-9.8.C30mdk.i586.rpm 
 b0a3478773ac1f8ff9297a5e025cdffd  corporate/3.0/SRPMS/OpenOffice.org-1.1.2-9.8.C30mdk.src.rpm

Corporate Server 3.0/X86_64

 eaed00b902866c1c8eaeb0b2283963d0  corporate/3.0/x86_64/OpenOffice.org-1.1.2-9.8.C30mdk.i586.rpm
 bf24fd6b79476d4622e05cf52efc31b6  corporate/3.0/x86_64/OpenOffice.org-help-cs-1.1.2-9.8.C30mdk.i586.rpm
 b031829e937a98b47495d012d827a2ca  corporate/3.0/x86_64/OpenOffice.org-help-de-1.1.2-9.8.C30mdk.i586.rpm
 9b10b493fa4914ba8c74f4611f65e842  corporate/3.0/x86_64/OpenOffice.org-help-en-1.1.2-9.8.C30mdk.i586.rpm
 50a300e7cc3bb7032ca2270a6584e7f1  corporate/3.0/x86_64/OpenOffice.org-help-es-1.1.2-9.8.C30mdk.i586.rpm
 13fd968bec6ee8e809160a407683312e  corporate/3.0/x86_64/OpenOffice.org-help-eu-1.1.2-9.8.C30mdk.i586.rpm
 be1db7b2a1476777c4b6c3b4fbb0305c  corporate/3.0/x86_64/OpenOffice.org-help-fi-1.1.2-9.8.C30mdk.i586.rpm
 653c73506f66f450ddbb6df1455a0f28  corporate/3.0/x86_64/OpenOffice.org-help-fr-1.1.2-9.8.C30mdk.i586.rpm
 c4995cdcf690ac560fb7865f2b43ea42  corporate/3.0/x86_64/OpenOffice.org-help-it-1.1.2-9.8.C30mdk.i586.rpm
 70fc99ebe87f29f31a9e71f5e79cf119  corporate/3.0/x86_64/OpenOffice.org-help-ja-1.1.2-9.8.C30mdk.i586.rpm
 e95922eb1d683732df7050e0c4bbe1b5  corporate/3.0/x86_64/OpenOffice.org-help-ko-1.1.2-9.8.C30mdk.i586.rpm
 2e5edaee26d9b7905167f244ad526ae8  corporate/3.0/x86_64/OpenOffice.org-help-nl-1.1.2-9.8.C30mdk.i586.rpm
 0f98d1ab2f920c126fc95ff74cf35c47  corporate/3.0/x86_64/OpenOffice.org-help-ru-1.1.2-9.8.C30mdk.i586.rpm
 87d2b1a3ad0ff1fdc30683fb264f58e5  corporate/3.0/x86_64/OpenOffice.org-help-sk-1.1.2-9.8.C30mdk.i586.rpm
 949422a12ca88487a452612e39df2160  corporate/3.0/x86_64/OpenOffice.org-help-sv-1.1.2-9.8.C30mdk.i586.rpm
 95ff06b7fe59c3df9908181c33638372  corporate/3.0/x86_64/OpenOffice.org-help-zh_CN-1.1.2-9.8.C30mdk.i586.rpm
 78d40f885eafc5809381d1d57c816519  corporate/3.0/x86_64/OpenOffice.org-help-zh_TW-1.1.2-9.8.C30mdk.i586.rpm
 24906531c4d47ea9fffce68a250ed6da  corporate/3.0/x86_64/OpenOffice.org-l10n-ar-1.1.2-9.8.C30mdk.i586.rpm
 331a54961505ee187fa13340ec8079e5  corporate/3.0/x86_64/OpenOffice.org-l10n-ca-1.1.2-9.8.C30mdk.i586.rpm
 0abb0186fc8f63b069cf004161c9d1c3  corporate/3.0/x86_64/OpenOffice.org-l10n-cs-1.1.2-9.8.C30mdk.i586.rpm
 31f95f5bd774a6101d335896c2e80933  corporate/3.0/x86_64/OpenOffice.org-l10n-da-1.1.2-9.8.C30mdk.i586.rpm
 573e67b672aac283ec82da40f8dcdbe7  corporate/3.0/x86_64/OpenOffice.org-l10n-de-1.1.2-9.8.C30mdk.i586.rpm
 09a27986fd26185fa95d728f64cc504b  corporate/3.0/x86_64/OpenOffice.org-l10n-el-1.1.2-9.8.C30mdk.i586.rpm
 184f512d92fdf1cef17815dbc026ff64  corporate/3.0/x86_64/OpenOffice.org-l10n-en-1.1.2-9.8.C30mdk.i586.rpm
 a9d7d0756b8ff7bf93ef79637ebe0d91  corporate/3.0/x86_64/OpenOffice.org-l10n-es-1.1.2-9.8.C30mdk.i586.rpm
 a24bade71e643457292e26fb0a757b29  corporate/3.0/x86_64/OpenOffice.org-l10n-et-1.1.2-9.8.C30mdk.i586.rpm
 ed09d190049fb616ac53870aaf8dc2b1  corporate/3.0/x86_64/OpenOffice.org-l10n-eu-1.1.2-9.8.C30mdk.i586.rpm
 4d10f93feb1db22e54a54be823720d03  corporate/3.0/x86_64/OpenOffice.org-l10n-fi-1.1.2-9.8.C30mdk.i586.rpm
 af9b15cc21bc662dd41b7268dd8cad41  corporate/3.0/x86_64/OpenOffice.org-l10n-fr-1.1.2-9.8.C30mdk.i586.rpm
 29964c4daaf151c7b285f1bb8cde2483  corporate/3.0/x86_64/OpenOffice.org-l10n-it-1.1.2-9.8.C30mdk.i586.rpm
 c6471477d16534ab002df1bae8b31c81  corporate/3.0/x86_64/OpenOffice.org-l10n-ja-1.1.2-9.8.C30mdk.i586.rpm
 731b7f73869021ba95c637a82f75fdfd  corporate/3.0/x86_64/OpenOffice.org-l10n-ko-1.1.2-9.8.C30mdk.i586.rpm
 e7eb5b528a69999ebe7c12354da80608  corporate/3.0/x86_64/OpenOffice.org-l10n-nb-1.1.2-9.8.C30mdk.i586.rpm
 77da476ad22bc682461b0fbc640eb2b5  corporate/3.0/x86_64/OpenOffice.org-l10n-nl-1.1.2-9.8.C30mdk.i586.rpm
 939eab8147b526f7c019de12b8e08ad6  corporate/3.0/x86_64/OpenOffice.org-l10n-nn-1.1.2-9.8.C30mdk.i586.rpm
 6d5a7f915e5574cf59d1c0d777866012  corporate/3.0/x86_64/OpenOffice.org-l10n-pl-1.1.2-9.8.C30mdk.i586.rpm
 73eed8d49e422b81bf84efeb79ad4b4d  corporate/3.0/x86_64/OpenOffice.org-l10n-pt-1.1.2-9.8.C30mdk.i586.rpm
 01244314ce931ea0b7c6de5720cc5b35  corporate/3.0/x86_64/OpenOffice.org-l10n-pt_BR-1.1.2-9.8.C30mdk.i586.rpm
 40c795c59a4cce94e5607275e81acfc6  corporate/3.0/x86_64/OpenOffice.org-l10n-ru-1.1.2-9.8.C30mdk.i586.rpm
 0a2fb11ff8f69da2c567b9bf2c8d87f5  corporate/3.0/x86_64/OpenOffice.org-l10n-sk-1.1.2-9.8.C30mdk.i586.rpm
 f64c1aac24a68aff80b5611aa9e8764e  corporate/3.0/x86_64/OpenOffice.org-l10n-sv-1.1.2-9.8.C30mdk.i586.rpm
 0e1a641b4897a36cd23c1a8105771d01  corporate/3.0/x86_64/OpenOffice.org-l10n-tr-1.1.2-9.8.C30mdk.i586.rpm
 1e346f7702fb5e8ccd80089c45286131  corporate/3.0/x86_64/OpenOffice.org-l10n-zh_CN-1.1.2-9.8.C30mdk.i586.rpm
 2736ecc2da35d45b5e8690f294fac893  corporate/3.0/x86_64/OpenOffice.org-l10n-zh_TW-1.1.2-9.8.C30mdk.i586.rpm
 09bcbe78beb75e74c9a020c5a877e5e0  corporate/3.0/x86_64/OpenOffice.org-libs-1.1.2-9.8.C30mdk.i586.rpm 
 b0a3478773ac1f8ff9297a5e025cdffd  corporate/3.0/SRPMS/OpenOffice.org-1.1.2-9.8.C30mdk.src.rpm

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5746
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0320

Upgrade

To upgrade automatically, use MandrivaUpdate.

Verification

Please verify the update prior to upgrading to ensure the integrity of the downloaded package. You can do this with the command :

                rpm --checksig package.rpm
                

You can get the GPG public key of the Mandriva Security Team to verify the GPG signature of each RPM.

If you use MandrivaUpdate, the verification of md5 checksum and GPG signature is performed automatically for you.