PublicDate: 2008-04-17 19:05:00 UTC
Candidate: CVE-2008-0320
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0320
 https://ubuntu.com/security/notices/USN-609-1
Description:
 Heap-based buffer overflow in the OLE importer in OpenOffice.org before 2.4
 allows remote attackers to cause a denial of service (crash) and possibly
 execute arbitrary code via an OLE file with a crafted
 DocumentSummaryInformation stream.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to: calc
CVSS: 

Patches_openoffice.org:
upstream_openoffice.org: released (2.4)
dapper_openoffice.org: released (2.0.2-2ubuntu12.6)
feisty_openoffice.org: released (2.2.0-1ubuntu6)
gutsy_openoffice.org: released (1:2.3.0-1ubuntu5.4)
hardy_openoffice.org: not-affected (1:2.4.0-3ubuntu6)
devel_openoffice.org: not-affected (1:2.4.0-3ubuntu6)

upstream_openoffice.org-amd64: needs-triage
dapper_openoffice.org-amd64: released (2.0.2-2ubuntu12.6-1)

upstream_hsqldb: not-affected
dapper_hsqldb: not-affected
feisty_hsqldb: not-affected
gutsy_hsqldb: not-affected
hardy_hsqldb: not-affected
devel_hsqldb: not-affected