Fedora patches old OpenOffice flaw

By Matt Chapman on Oct 8, 2007 10:01 AM
Filed under Applications

Fedora has fixed a 'highly critical' flaw in the OpenOffice suite of products more than two weeks after it was first discovered.

The vulnerability was announced on the Secunia security website on 18 September and Red Hat provided a fix on the same day for its Enterprise Linux products.

However, an update to fix the problem in the free Fedora Linux has only just been released, despite Red Hat being its main sponsor.

The OpenOffice vulnerability is caused by integer overflows when processing certain tags within Tiff images.

The problem could be exploited to cause heap-based buffer overflows, possibly by tricking a user into opening a specially crafted document.

Successful exploitation could allow the execution of arbitrary code and compromise a user's system.

OpenOffice is a free office productivity suite that includes a word processor, spreadsheet, presentation manager, formula editor and drawing program.

fedora, patches, openoffice, flaw

Ads by Google

What are your thoughts on this article? Add your comment below.

To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.

NOTE: You must be a registered member of SC Magazine to post a comment.

Click here to login | Click here to register

comments powered by Disqus