Skip to navigation

Security Advisory openoffice.org security update

Advisory: RHSA-2005:375-07
Type: Security Advisory
Severity: Important
Issued on: 2005-04-25
Last updated on: 2005-04-25
Affected Products: Red Hat Desktop (v. 3)
Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 3)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux ES (v. 3)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux WS (v. 3)
Red Hat Enterprise Linux WS (v. 4)
CVEs (cve.mitre.org): CVE-2005-0941

Details

Updated openoffice.org packages are now available.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

OpenOffice.org is an office productivity suite that includes desktop
applications such as a word processor, spreadsheet, presentation manager,
formula editor, and drawing program.

A heap based buffer overflow bug was found in the OpenOffice.org DOC file
processor. An attacker could create a carefully crafted DOC file in such a
way that it could cause OpenOffice.org to execute arbitrary code when the
file was opened by a victim. The Common Vulnerabilities and Exposures
project (cve.mitre.org) has assigned the name CAN-2005-0941 to this issue.

All users of OpenOffice.org are advised to upgrade to these updated
packages, which contain backported fixes for these issues.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:

http://www.redhat.com/docs/manuals/enterprise/

Updated packages

Red Hat Desktop (v. 3)

SRPMS:
openoffice.org-1.1.2-24.2.0.EL3.src.rpm
File outdated by:  RHSA-2010:0643
    MD5: 28b62078a887294f683d0ef33c4fb7d8
 
IA-32:
openoffice.org-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 3fb7f2cc17fdbac1690731032438fa2a
openoffice.org-i18n-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 2e5336c39975c611ffa23145d9985dbb
openoffice.org-libs-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: afa55ff288e8fa052fada08cc0a56235
 
x86_64:
openoffice.org-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 3fb7f2cc17fdbac1690731032438fa2a
openoffice.org-i18n-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 2e5336c39975c611ffa23145d9985dbb
openoffice.org-libs-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: afa55ff288e8fa052fada08cc0a56235
 
Red Hat Desktop (v. 4)

SRPMS:
openoffice.org-1.1.2-24.6.0.EL4.src.rpm
File outdated by:  RHSA-2011:0181
    MD5: 782df44227035bdae27f4d5b82548244
 
IA-32:
openoffice.org-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 700fc3a6036a9206f31bd7d9ac7db80c
openoffice.org-i18n-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 9dc5d0f31383ea144f216c7bfe18efa2
openoffice.org-kde-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 93e50067e6aa036fb4356846b61d730e
openoffice.org-libs-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: fb4760c12f39bdea783d35ddecdf7ff7
 
x86_64:
openoffice.org-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 700fc3a6036a9206f31bd7d9ac7db80c
openoffice.org-i18n-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 9dc5d0f31383ea144f216c7bfe18efa2
openoffice.org-libs-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: fb4760c12f39bdea783d35ddecdf7ff7
 
Red Hat Enterprise Linux AS (v. 3)

SRPMS:
openoffice.org-1.1.2-24.2.0.EL3.src.rpm
File outdated by:  RHSA-2010:0643
    MD5: 28b62078a887294f683d0ef33c4fb7d8
 
IA-32:
openoffice.org-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 3fb7f2cc17fdbac1690731032438fa2a
openoffice.org-i18n-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 2e5336c39975c611ffa23145d9985dbb
openoffice.org-libs-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: afa55ff288e8fa052fada08cc0a56235
 
x86_64:
openoffice.org-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 3fb7f2cc17fdbac1690731032438fa2a
openoffice.org-i18n-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 2e5336c39975c611ffa23145d9985dbb
openoffice.org-libs-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: afa55ff288e8fa052fada08cc0a56235
 
Red Hat Enterprise Linux AS (v. 4)

SRPMS:
openoffice.org-1.1.2-24.6.0.EL4.src.rpm
File outdated by:  RHSA-2011:0181
    MD5: 782df44227035bdae27f4d5b82548244
 
IA-32:
openoffice.org-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 700fc3a6036a9206f31bd7d9ac7db80c
openoffice.org-i18n-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 9dc5d0f31383ea144f216c7bfe18efa2
openoffice.org-kde-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 93e50067e6aa036fb4356846b61d730e
openoffice.org-libs-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: fb4760c12f39bdea783d35ddecdf7ff7
 
PPC:
openoffice.org-1.1.2-24.6.0.EL4.ppc.rpm
File outdated by:  RHSA-2011:0181
    MD5: 9f9b16a868bac28eea5ae035a41da178
openoffice.org-i18n-1.1.2-24.6.0.EL4.ppc.rpm
File outdated by:  RHSA-2011:0181
    MD5: 0bb909a3756f7256d5016cb4e8135906
openoffice.org-kde-1.1.2-24.6.0.EL4.ppc.rpm
File outdated by:  RHSA-2011:0181
    MD5: 92b028f02db5c193274486119c9ec763
openoffice.org-libs-1.1.2-24.6.0.EL4.ppc.rpm
File outdated by:  RHSA-2011:0181
    MD5: 02e37584c158d993c83d72dfbdc4f265
 
x86_64:
openoffice.org-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 700fc3a6036a9206f31bd7d9ac7db80c
openoffice.org-i18n-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 9dc5d0f31383ea144f216c7bfe18efa2
openoffice.org-libs-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: fb4760c12f39bdea783d35ddecdf7ff7
 
Red Hat Enterprise Linux ES (v. 3)

SRPMS:
openoffice.org-1.1.2-24.2.0.EL3.src.rpm
File outdated by:  RHSA-2010:0643
    MD5: 28b62078a887294f683d0ef33c4fb7d8
 
IA-32:
openoffice.org-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 3fb7f2cc17fdbac1690731032438fa2a
openoffice.org-i18n-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 2e5336c39975c611ffa23145d9985dbb
openoffice.org-libs-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: afa55ff288e8fa052fada08cc0a56235
 
x86_64:
openoffice.org-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 3fb7f2cc17fdbac1690731032438fa2a
openoffice.org-i18n-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 2e5336c39975c611ffa23145d9985dbb
openoffice.org-libs-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: afa55ff288e8fa052fada08cc0a56235
 
Red Hat Enterprise Linux ES (v. 4)

SRPMS:
openoffice.org-1.1.2-24.6.0.EL4.src.rpm
File outdated by:  RHSA-2011:0181
    MD5: 782df44227035bdae27f4d5b82548244
 
IA-32:
openoffice.org-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 700fc3a6036a9206f31bd7d9ac7db80c
openoffice.org-i18n-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 9dc5d0f31383ea144f216c7bfe18efa2
openoffice.org-kde-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 93e50067e6aa036fb4356846b61d730e
openoffice.org-libs-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: fb4760c12f39bdea783d35ddecdf7ff7
 
x86_64:
openoffice.org-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 700fc3a6036a9206f31bd7d9ac7db80c
openoffice.org-i18n-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 9dc5d0f31383ea144f216c7bfe18efa2
openoffice.org-libs-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: fb4760c12f39bdea783d35ddecdf7ff7
 
Red Hat Enterprise Linux WS (v. 3)

SRPMS:
openoffice.org-1.1.2-24.2.0.EL3.src.rpm
File outdated by:  RHSA-2010:0643
    MD5: 28b62078a887294f683d0ef33c4fb7d8
 
IA-32:
openoffice.org-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 3fb7f2cc17fdbac1690731032438fa2a
openoffice.org-i18n-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 2e5336c39975c611ffa23145d9985dbb
openoffice.org-libs-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: afa55ff288e8fa052fada08cc0a56235
 
x86_64:
openoffice.org-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 3fb7f2cc17fdbac1690731032438fa2a
openoffice.org-i18n-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: 2e5336c39975c611ffa23145d9985dbb
openoffice.org-libs-1.1.2-24.2.0.EL3.i386.rpm
File outdated by:  RHSA-2010:0643
    MD5: afa55ff288e8fa052fada08cc0a56235
 
Red Hat Enterprise Linux WS (v. 4)

SRPMS:
openoffice.org-1.1.2-24.6.0.EL4.src.rpm
File outdated by:  RHSA-2011:0181
    MD5: 782df44227035bdae27f4d5b82548244
 
IA-32:
openoffice.org-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 700fc3a6036a9206f31bd7d9ac7db80c
openoffice.org-i18n-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 9dc5d0f31383ea144f216c7bfe18efa2
openoffice.org-kde-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 93e50067e6aa036fb4356846b61d730e
openoffice.org-libs-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: fb4760c12f39bdea783d35ddecdf7ff7
 
x86_64:
openoffice.org-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 700fc3a6036a9206f31bd7d9ac7db80c
openoffice.org-i18n-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: 9dc5d0f31383ea144f216c7bfe18efa2
openoffice.org-libs-1.1.2-24.6.0.EL4.i386.rpm
File outdated by:  RHSA-2011:0181
    MD5: fb4760c12f39bdea783d35ddecdf7ff7
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

154540 - CAN-2005-0941 openoffice.org heap overflow


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/