PublicDate: 2007-09-18 21:17:00 UTC
Candidate: CVE-2007-2834
References: 
 https://ubuntu.com/security/notices/USN-524-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2834
Description:
 Integer overflow in the TIFF parser in OpenOffice.org (OOo) before 2.3; and
 Sun StarOffice 6, 7, and 8 Office Suite (StarSuite); allows remote
 attackers to execute arbitrary code via a TIFF file with crafted values of
 unspecified length fields, which triggers allocation of an incorrect amount
 of memory, resulting in a heap-based buffer overflow.
Ubuntu-Description: 
Notes: 
 jdstrand> upstream says fixed in 2.3.0, but gutsy has 2.3.0~rc1-1ubuntu2.
  Flagging as needed until can confirm it is not.
 jdstrand> on 2007/09/27 kees said that calc was taking care of it
Bugs: 
Priority: medium
Discovered-by:
Assigned-to: calc
CVSS: 
upstream_openoffice.org: released (2.3.0)
dapper_openoffice.org: released (2.0.2-2ubuntu12.5)
edgy_openoffice.org: released (2.0.4-0ubuntu7)
feisty_openoffice.org: released (2.2.0-1ubuntu5)
devel_openoffice.org: not-affected