From: [email protected]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- -------------------------------------------------------------------------- Debian Security Advisory DSA 1880-1 [email protected] http://www.debian.org/security/ Martin Schulze September 4th, 2009 http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package : openoffice.org
Vulnerability : several
Problem type : local (remote)
Debian-specific: no
CVE IDs : CVE-2009-0200 CVE-2009-0201 CVE-2009-2139

Several vulnerabilities have been discovered in the OpenOffice.org
office suite. The Common Vulnerabilities and Exposures project
identifies the following problems:

CVE-2009-0200

Dyon Balding of Secunia Research has discovered a vulnerability,
which can be exploited by opening a specially crafted Microsoft
Word document.

When reading a Microsoft Word document, a bug in the parser of
sprmTDelete records can result in an integer underflow that may
lead to heap-based buffer overflows.

Successful exploitation may allow arbitrary code execution in the
context of the OpenOffice.org process.

CVE-2009-0201

Dyon Balding of Secunia Research has discovered a vulnerability,
which can be exploited by opening a specially crafted Microsoft
Word document.

When reading a Microsoft Word document, a bug in the parser of
sprmTDelete records can result in heap-based buffer overflows.

Successful exploitation may allow arbitrary code execution in the
context of the OpenOffice.org process.

CVE-2009-2139

A vulnerability has been discovered in the parser of EMF files of
OpenOffice/Go-oo 2.x and 3.x that can be triggered by a specially
crafted document and lead to the execution of arbitrary commands
the privileges of the user running OpenOffice.org/Go-oo.

This vulnerability does not exist in the packages for oldstable,
testing and unstable.

For the old stable distribution (etch) these problems have been fixed in version 2.0.4.dfsg.2-7etch7.

For the stable distribution (lenny) these problems have been fixed in
version 2.4.1+dfsg-1+lenny3 and higher.

For the unstable (sid) and testing (squeeze) distribution these
problems have been fixed in version 3.1.1~ooo310m15-1.

We recommend that you upgrade your Openoffice.org package.


Upgrade Instructions
- --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given at the end of this advisory:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 4.0 alias etch
- -------------------------------

Source archives:

http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org_2.0.4.dfsg.2-7etch7.dsc
Size/MD5 checksum: 7250 76bc711bb7e9a04ecc62b969c63a8d55
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org_2.0.4.dfsg.2-7etch7.diff.gz
Size/MD5 checksum: 76911819 8f022d2d93a0faf06fa022f2c8048b48
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org_2.0.4.dfsg.2.orig.tar.gz
Size/MD5 checksum: 232674922 2f1a5d92188639d3634bd6d1b1c29038

Architecture independent components:

http://security.debian.org/pool/updates/main/o/openoffice.org/broffice.org_2.0.4.dfsg.2-7etch7_all.deb
Size/MD5 checksum: 499306 3ea2b39d8bef3c56085610ba2a9cba9b
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-common_2.0.4.dfsg.2-7etch7_all.deb
Size/MD5 checksum: 27088338 12932398efd5021e7677b053c96ce04c
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-dev-doc_2.0.4.dfsg.2-7etch7_all.deb
Size/MD5 checksum: 5161862 5da27e8b31d94b1256d134a8e54dadce
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-dtd-officedocument1.0_2.0.4.dfsg.2-7etch7_all.deb
Size/MD5 checksum: 252164 af1d650219879d0d537955488bd1b23e
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-filter-mobiledev_2.0.4.dfsg.2-7etch7_all.deb
Size/MD5 checksum: 310882 14c5143ee4ee99ba533f65e3425bd94d
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-cs_2.0.4.dfsg.2-7etch7_all.deb
Size/MD5 checksum: 11906044 d63270a9edeb9cb9c87fc48c6667f654
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-da_2.0.4.dfsg.2-7etch7_all.deb
Size/MD5 checksum: 11859386 b9a7ede88938dd795505f1c60cd1c7d5
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-de_2.0.4.dfsg.2-7etch7_all.deb
Size/MD5 checksum: 12697020 13f3ad336501764f2175283ccf39e641
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-dz_2.0.4.dfsg.2-7etch7_all.deb
Size/MD5 checksum: 15055132 6eff9f79a53588243c8bd529cd0e347d
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-en-gb_2.0.4.dfsg.2-7etch7_all.deb
Size/MD5 checksum: 11318102 d9a189b778e9adeed8069072c9b73136
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-en-us_2.0.4.dfsg.2-7etch7_all.deb
Size/MD5 checksum: 11321376 4ea51940e224eb18fe7f2bc53714d63c
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-en_2.0.4.dfsg.2-7etch7_all.deb
Size/MD5 checksum: 215358 a1d0f4a7f4245a23485c0d3510b5cb7d
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-es_2.0.4.dfsg.2-7etch7_all.deb
Size/MD5 checksum: 12080104 977657f9b5a87256bbf1a61f02abd19f
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-et_2.0.4.dfsg.2-7etch7_all.deb
Size/MD5 checksum: 12000104 6dade968f239c770d035bc0d16ebc927
http://security.debian.org/pool/updates/main/o/openoffice.org/openoffice.org-help-fr_2.0.4.dfsg.2-7etch7_all.deb

[continued in next message]

--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)