CVE-2012-1149

Priority
Medium
Description
Integer overflow in the vclmi.dll module in OpenOffice.org (OOo) 3.3, 3.4
Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote
attackers to cause a denial of service (application crash) and possibly
execute arbitrary code via a crafted embedded image object, as demonstrated
by a JPEG image in a .DOC file, which triggers a heap-based buffer
overflow.
References
Bugs
Assigned-to
jdstrand
Package
Upstream:released (3.5.3)
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (1:3.5.3-0ubuntu1)
Patches:
Upstream:http://cgit.freedesktop.org/libreoffice/core/commit/?id=fe40da4cb640819d869d1c925869bc87ede9bbfe (pt1)
Upstream:http://cgit.freedesktop.org/libreoffice/core/commit/?id=88e0fa4aa3bea9ffeee372b6a428ca62cee41203 (pt2)
Upstream:http://cgit.freedesktop.org/libreoffice/core/commit/?id=9ff94ae0fa947c5fd6a31fbc38421f60eb5e1fba (pt3)
Patch:https://launchpad.net/~bjoern-michaelsen/+archive/libreoffice-oneirictest-20110718/+sourcepub/2469456/+listing-archive-extra
Package
Upstream:needs-triage
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (transitional packages)
Patches:
Vendor:http://www.debian.org/security/2012/dsa-2473
Vendor:http://www.debian.org/security/2012/dsa-2487
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:40:31 UTC (commit 9756)