PublicDate: 2008-04-17 19:05:00 UTC
Candidate: CVE-2007-5747
References: 
 https://ubuntu.com/security/notices/USN-609-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5747
Description:
 Integer underflow in OpenOffice.org before 2.4 allows remote attackers to
 cause a denial of service (crash) and possibly execute arbitrary code via a
 Quattro Pro (QPRO) file with crafted values that trigger an excessive loop
 and a stack-based buffer overflow.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: medium
Discovered-by:
Assigned-to: calc
CVSS: 

Patches_openoffice.org:
upstream_openoffice.org: released (2.4)
dapper_openoffice.org: released (2.0.2-2ubuntu12.6)
feisty_openoffice.org: released (2.2.0-1ubuntu6)
gutsy_openoffice.org: released (1:2.3.0-1ubuntu5.4)
hardy_openoffice.org: not-affected (1:2.4.0-3ubuntu6)
devel_openoffice.org: not-affected (1:2.4.0-3ubuntu6)

upstream_openoffice.org-amd64: needs-triage
dapper_openoffice.org-amd64: released (2.0.2-2ubuntu12.6-1)

upstream_hsqldb: not-affected
dapper_hsqldb: not-affected
feisty_hsqldb: not-affected
gutsy_hsqldb: not-affected
hardy_hsqldb: not-affected
devel_hsqldb: not-affected