Description: | Description: The remote host is missing an update to openoffice.org announced via advisory FEDORA-2009-9256.
Update Information:
CVE-2009-0200/CVE-2009-0201: Harden .doctable insert/delete record import handling.
ChangeLog:
* Wed Sep 2 2009 Caolán McNamara - 1:3.0.1-15.6 - Resolves: rhbz#520772 copy/paste cockup * Mon Aug 31 2009 Caolán McNamara - 1:3.0.1-15.5 - Resolves: CVE-2009-0200/CVE-2009-0201 - Resolves: rhbz#499474 soffice and .recently-used.xbel - Resolves: rhbz#504419 openoffice.org-3.1.0.ooo102566.sc.less.frenetic.progress.patch - Resolves: rhbz#506039 workspace.pdfextfix02.patch upsidedown images in pdf import - Resolves: rhbz#514683 add openoffice.org-3.1.1.ooo104329.dbaccess.primarykeys.patch - make the last three patches applicable - Resolves: rbhz#501141 Images and Frames disappear in sequential printing
References:
[ 1 ] Bug #500993 - CVE-2009-0200 OpenOffice.org Word document Integer Underflow https://bugzilla.redhat.com/show_bug.cgi?id=500993 [ 2 ] Bug #502194 - CVE-2009-0201 OpenOffice.org Word document buffer overflow https://bugzilla.redhat.com/show_bug.cgi?id=502194
Solution: Apply the appropriate updates.
This update can be installed with the yum update program. Use su -c 'yum update openoffice.org' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/.
https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-9256
CVSS Score: 9.3
CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
|