CVE-2012-1149

Priority
Medium
Description
Integer overflow in the vclmi.dll module in OpenOffice.org (OOo) 3.3, 3.4
Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote
attackers to cause a denial of service (application crash) and possibly
execute arbitrary code via a crafted embedded image object, as demonstrated
by a JPEG image in a .DOC file, which triggers a heap-based buffer
overflow.
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1149
http://www.openoffice.org/security/cves/CVE-2012-1149.html
http://www.libreoffice.org/advisories/cve-2012-1149/
http://nabble.documentfoundation.org/CVE-2012-1149-Is-there-a-patch-td3985567.html
http://www.ubuntu.com/usn/usn-1496-1
http://www.ubuntu.com/usn/usn-1495-1
Bugs
https://bugzilla.redhat.com/show_bug.cgi?id=821726
Assigned-to
jdstrand
Package
Source: libreoffice (LP Ubuntu Debian)
Upstream:released (3.5.3)
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):DNE
Ubuntu 11.04 (Natty Narwhal):released (1:3.3.4-0ubuntu1.2)
Ubuntu 11.10 (Oneiric Ocelot):released (1:3.4.4-0ubuntu1.2)
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (1:3.5.3-0ubuntu1)
Ubuntu 12.10 (Quantal Quetzal):not-affected
Patches:
Upstream:http://cgit.freedesktop.org/libreoffice/core/commit/?id=fe40da4cb640819d869d1c925869bc87ede9bbfe (pt1)
Upstream:http://cgit.freedesktop.org/libreoffice/core/commit/?id=88e0fa4aa3bea9ffeee372b6a428ca62cee41203 (pt2)
Upstream:http://cgit.freedesktop.org/libreoffice/core/commit/?id=9ff94ae0fa947c5fd6a31fbc38421f60eb5e1fba (pt3)
Patch:https://launchpad.net/~bjoern-michaelsen/+archive/libreoffice-oneirictest-20110718/+sourcepub/2469456/+listing-archive-extra
Package
Source: openoffice.org (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 8.04 LTS (Hardy Heron):ignored (reached end-of-life)
Ubuntu 10.04 LTS (Lucid Lynx):released (1:3.2.0-7ubuntu4.3)
Ubuntu 11.04 (Natty Narwhal):not-affected (transitional packages)
Ubuntu 11.10 (Oneiric Ocelot):not-affected (transitional packages)
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (transitional packages)
Ubuntu 12.10 (Quantal Quetzal):DNE
Patches:
Vendor:http://www.debian.org/security/2012/dsa-2473
Vendor:http://www.debian.org/security/2012/dsa-2487
More Information

Valid XHTML 1.0 Strict

Updated: 2012-07-03 02:14:23 UTC (commit 5459)