发布日期:2010-02-12
更新日期:2010-02-25
受影响系统:
OpenOffice OpenOffice < 3.2
不受影响系统:
OpenOffice OpenOffice 3.2
描述:
--------------------------------------------------------------------------------
BUGTRAQ ID: 38218
CVE ID: CVE-2009-2949,CVE-2009-2950,CVE-2009-3301,CVE-2009-3302
OpenOffice是个整合性的软件,包含了许多文字处理、表格、公式等办公工具。
OpenOffice的source/filter.vcl/lgif/decode.cxx文件中的GIFLZWDecompressor::GIFLZWDecompressor函数在LZW解压GIF文件内容时存在堆溢出,source/filter.vcl/ixpm/svt_xpmread.cxx文件中的XPMReader::ReadXPM函数在解析XPM文件时存在可导致堆溢出的整数溢出,filter/ww8/ww8par2.cxx文件在解析Word文档中的sprmTDefTable和sprmTSetBrc表格属性时存在整数溢出和堆溢出漏洞。用户受骗打开了恶意的文档文件就可能触发这些溢出,导致拒绝服务或执行任意代码。
建议:
--------------------------------------------------------------------------------
厂商补丁:
Debian
------
Debian已经为此发布了一个安全公告(DSA-1995-1)以及相应补丁:
DSA-1995-1:New openoffice.org packages fix several
链接:http://www.debian.org/security/2010/dsa-1995
补丁下载:
Source archives:
Architecture independent packages:
alpha architecture (DEC Alpha)
amd64 architecture (AMD x86_64 (AMD64))
arm architecture (ARM)
hppa architecture (HP PA RISC)
i386 architecture (Intel ia32)
ia64 architecture (Intel ia64)
mips architecture (MIPS (Big Endian))
mipsel architecture (MIPS (Little Endian))
powerpc architecture (PowerPC)
s390 architecture (IBM S/390)
sparc architecture (Sun SPARC/UltraSPARC)
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
Architecture independent packages:
RedHat
------
RedHat已经为此发布了一个安全公告(RHSA-2010:0101-02)以及相应补丁:
RHSA-2010:0101-02:Important: openoffice.org security update
链接:https://www.redhat.com/support/errata/RHSA-2010-0101.html
OpenOffice
----------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: