Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200504-13 (OpenOffice)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.54915

Kategorie: Gentoo Local Security Checks

Titel: Gentoo Security Advisory GLSA 200504-13 (OpenOffice)

Zusammenfassung: The remote host is missing updates announced in;advisory GLSA 200504-13.

Beschreibung: Summary:
The remote host is missing updates announced in
advisory GLSA 200504-13.

Vulnerability Insight:
OpenOffice.Org is vulnerable to a heap overflow when processing DOC
documents, which could lead to arbitrary code execution.

Solution:
All OpenOffice.Org users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=app-office/openoffice-1.1.4-r1'

All OpenOffice.Org binary users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose
'>=app-office/openoffice-bin-1.1.4-r1'

All OpenOffice.Org Ximian users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose app-office/openoffice-ximian

Note to PPC users: There is no stable OpenOffice.Org fixed version for the
PPC architecture. Affected users should switch to the latest
OpenOffice.Org Ximian version.

Note to SPARC users: There is no stable OpenOffice.Org fixed version for
the SPARC architecture. Affected users should switch to the latest
OpenOffice.Org Ximian version.

CVSS Score:
5.1

CVSS Vector:
AV:N/AC:H/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2005-0941
BugTraq ID: 13092
http://www.securityfocus.com/bid/13092
Bugtraq: 20050412 OpenOffice DOC document Heap Overflow (Google Search)
http://www.securityfocus.com/archive/1/395516
http://www.gentoo.org/security/en/glsa/glsa-200504-13.xml
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9106
http://www.redhat.com/support/errata/RHSA-2005-375.html
http://secunia.com/advisories/17027
SuSE Security Announcement: SUSE-SR:2005:021 (Google Search)
http://www.novell.com/linux/security/advisories/2005_21_sr.html

Copyright Copyright (C) 2008 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.54915
Kategorie:	Gentoo Local Security Checks
Titel:	Gentoo Security Advisory GLSA 200504-13 (OpenOffice)
Zusammenfassung:	The remote host is missing updates announced in;advisory GLSA 200504-13.
Beschreibung:	Summary: The remote host is missing updates announced in advisory GLSA 200504-13. Vulnerability Insight: OpenOffice.Org is vulnerable to a heap overflow when processing DOC documents, which could lead to arbitrary code execution. Solution: All OpenOffice.Org users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-office/openoffice-1.1.4-r1' All OpenOffice.Org binary users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-office/openoffice-bin-1.1.4-r1' All OpenOffice.Org Ximian users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose app-office/openoffice-ximian Note to PPC users: There is no stable OpenOffice.Org fixed version for the PPC architecture. Affected users should switch to the latest OpenOffice.Org Ximian version. Note to SPARC users: There is no stable OpenOffice.Org fixed version for the SPARC architecture. Affected users should switch to the latest OpenOffice.Org Ximian version. CVSS Score: 5.1 CVSS Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2005-0941 BugTraq ID: 13092 http://www.securityfocus.com/bid/13092 Bugtraq: 20050412 OpenOffice DOC document Heap Overflow (Google Search) http://www.securityfocus.com/archive/1/395516 http://www.gentoo.org/security/en/glsa/glsa-200504-13.xml https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9106 http://www.redhat.com/support/errata/RHSA-2005-375.html http://secunia.com/advisories/17027 SuSE Security Announcement: SUSE-SR:2005:021 (Google Search) http://www.novell.com/linux/security/advisories/2005_21_sr.html
Copyright	Copyright (C) 2008 E-Soft Inc.