Candidate: CVE-2008-2238
PublicDate: 2008-10-30 20:00:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2238
 https://ubuntu.com/security/notices/USN-677-1
Description:
 Multiple integer overflows in OpenOffice.org (OOo) 2.x before 2.4.2 allow
 remote attackers to execute arbitrary code via crafted EMR records in an
 EMF file associated with a StarOffice/StarSuite document, which trigger a
 heap-based buffer overflow.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: medium
Discovered-by:
Assigned-to: jdstrand
CVSS: 

Patches_openoffice.org:
 upstream: sjfixes09
upstream_openoffice.org: released (1:3.0.0~rc3-1)
dapper_openoffice.org: released (2.0.2-2ubuntu12.7)
feisty_openoffice.org: needed (reached end-of-life)
gutsy_openoffice.org: released (1:2.3.0-1ubuntu5.5)
hardy_openoffice.org: released (1:2.4.1-1ubuntu2.1)
intrepid_openoffice.org: released (1:2.4.1-11ubuntu2.1)
devel_openoffice.org: not-affected (1:3.0.0-6ubuntu1)

Patches_openoffice.org-amd64:
upstream_openoffice.org-amd64: needs-triage
dapper_openoffice.org-amd64: released (2.0.2-2ubuntu12.7-2)
gutsy_openoffice.org-amd64: DNE
hardy_openoffice.org-amd64: DNE
intrepid_openoffice.org-amd64: DNE
devel_openoffice.org-amd64: DNE