openoffice.org (1:3.1.1-5ubuntu1.3) karmic-security; urgency=low
* SECURITY UPDATE: multiple OpenOffice.org vulnerabilities.
- ooo-build/patches/dev300/SA40775.diff: buffer overflow fixes from
upstream, patch thanks to Rene Engelhard (CVE-2010-2935, CVE-2010-2936).
- ooo-build/patches/dev300/tread-invalid-path-segments-correctly.diff:
directory traversal fixes from upstream, patch thanks to Rene Engelhard
(CVE-2010-3450).
- ooo-build/patches/dev300/cws-hb22.diff: multiple fixes from upstream,
patch thanks to Rene Engelhard.
- corrupt table model in RTF parser (CVE-2010-3451)
- SwRTFParser::ReadNumSecLevel (CVE-2010-3452)
- WW8ListManager::WW8ListManager (CVE-2010-3453)
- WW8DopTypography::ReadFromMem (CVE-2010-3454)
- LD_LIBRARY_PATH current directory injection (CVE-2010-3689)
- ooo-build/patches/dev300/security-fixes-drom-cws-os145.diff: heap
overflow in PPT fix from upstream, patch thanks to Rene Engelhard
(CVE-2010-4253).
- ooo-build/patches/dev300/security-fixes-from-cws-impress208.diff: heap
overflow in TGA fix from upstream, patch thanks to Rene Engelhard
(CVE-2010-4643).
Date: Tue, 25 Jan 2011 13:48:32 -0800
Changed-By: Kees Cook <[email protected]>
Maintainer: Ubuntu Core Developers <[email protected]>
https://launchpad.net/ubuntu/karmic/+source/openoffice.org/1:3.1.1-5ubuntu1.3
Format: 1.8
Date: Tue, 25 Jan 2011 13:48:32 -0800
Source: openoffice.org
Binary: openoffice.org broffice.org openoffice.org-l10n-za
openoffice.org-l10n-in openoffice.org-core openoffice.org-common
openoffice.org-java-common openoffice.org-writer openoffice.org-calc
openoffice.org-impress openoffice.org-draw openoffice.org-math
openoffice.org-base-core openoffice.org-base openoffice.org-style-crystal
openoffice.org-style-oxygen openoffice.org-style-industrial
openoffice.org-style-tango openoffice.org-style-human
openoffice.org-style-hicontrast openoffice.org-style-galaxy
openoffice.org-style-andromeda openoffice.org-gtk openoffice.org-gnome
openoffice.org-evolution openoffice.org-emailmerge python-uno
openoffice.org-officebean openoffice.org-filter-binfilter
openoffice.org-filter-mobiledev libmythes-dev
openoffice.org-dtd-officedocument1.0 uno-libs3 uno-libs3-dbg ure ure-dbg
openoffice.org-gcj cli-uno-bridge libuno-cli-basetypes1.0-cil
libuno-cli-uretypes1.0-cil libuno-cli-oootypes1.0-cil
libuno-cli-cppuhelper1.0-cil libuno-cli-ure1.0-cil mozilla-openoffice.org
openoffice.org-ogltrans openoffice.org-wiki-publisher
openoffice.org-report-builder openoffice.org-report-builder-bin
openoffice.org-presentation-minimizer openoffice.org-presenter-console
openoffice.org-pdfimport ttf-opensymbol openoffice.org-dev
openoffice.org-dev-doc openoffice.org-kde openoffice.org-kab
openoffice.org-sdbc-postgresql
Architecture: source
Version: 1:3.1.1-5ubuntu1.3
Distribution: karmic-security
Urgency: low
Maintainer: Ubuntu Core Developers <[email protected]>
Changed-By: Kees Cook <[email protected]>
Description:
broffice.org - full-featured office productivity suite -- BrOffice.org branding
cli-uno-bridge - OpenOffice.org bindings for Mono CLI
libmythes-dev - simple thesaurus library -- development files
libuno-cli-basetypes1.0-cil - OpenOffice.org bindings for Mono CLI -- base
types
libuno-cli-cppuhelper1.0-cil - OpenOffice.org bindings for Mono CLI --
bootstrapping library
libuno-cli-oootypes1.0-cil - OpenOffice.org bindings for Mono CLI --
OpenOffice.org type libra
libuno-cli-ure1.0-cil - OpenOffice.org bindings for Mono CLI -- helper classes
libuno-cli-uretypes1.0-cil - OpenOffice.org bindings for Mono CLI -- URE type
library
mozilla-openoffice.org - full-featured office productivity suite -- Mozilla
plugin
openoffice.org - full-featured office productivity suite
openoffice.org-base - full-featured office productivity suite -- database
openoffice.org-base-core - full-featured office productivity suite -- shared
library
openoffice.org-calc - full-featured office productivity suite -- spreadsheet
openoffice.org-common - full-featured office productivity suite --
arch-independent files
openoffice.org-core - full-featured office productivity suite --
arch-dependent files
openoffice.org-dev - full-featured office productivity suite -- SDK
openoffice.org-dev-doc - full-featured office productivity suite -- SDK
documentation
openoffice.org-draw - full-featured office productivity suite -- drawing
openoffice.org-dtd-officedocument1.0 - full-featured office productivity suite
-- legacy 1.0 XML DTD
openoffice.org-emailmerge - full-featured office productivity suite -- email
mail merge
openoffice.org-evolution - full-featured office productivity suite --
Evolution addressbook
openoffice.org-filter-binfilter - full-featured office productivity suite --
legacy filters (e.g. S
openoffice.org-filter-mobiledev - full-featured office productivity suite --
mobile devices filters
openoffice.org-gcj - full-featured office productivity suite -- Java libraries
for GIJ
openoffice.org-gnome - full-featured office productivity suite -- GNOME
integration
openoffice.org-gtk - full-featured office productivity suite -- GTK+
integration
openoffice.org-impress - full-featured office productivity suite --
presentation
openoffice.org-java-common - full-featured office productivity suite --
arch-independent Java
openoffice.org-kab - full-featured office productivity suite -- KDE adressbook
support
openoffice.org-kde - full-featured office productivity suite -- KDE integration
openoffice.org-l10n-in - full-featured office productivity suite -- Indic
language package
openoffice.org-l10n-za - full-featured office productivity suite -- South
African language
openoffice.org-math - full-featured office productivity suite -- equation
editor
openoffice.org-officebean - full-featured office productivity suite -- Java
bean
openoffice.org-ogltrans - OpenOffice.org Impress extension for transitions
using OpenGL
openoffice.org-pdfimport - OpenOffice.org extension for importing PDF documents
openoffice.org-presentation-minimizer - OpenOffice.org extension for
size-efficient presentations
openoffice.org-presenter-console - OpenOffice.org Impress extension for a
separate presenter's conso
openoffice.org-report-builder - OpenOffice.org extension for building database
reports
openoffice.org-report-builder-bin - OpenOffice.org extension for building
database reports -- librari
openoffice.org-sdbc-postgresql - OpenOffice.org extension for PostgreSQL SDBC
driver
openoffice.org-style-andromeda - full-featured office productivity suite --
Andromeda (Classic) sy
openoffice.org-style-crystal - full-featured office productivity suite --
Crystal symbol style
openoffice.org-style-galaxy - full-featured office productivity suite --
Galaxy (Default) symbo
openoffice.org-style-hicontrast - full-featured office productivity suite --
Hicontrast symbol styl
openoffice.org-style-human - Human symbol style for OpenOffice.org
openoffice.org-style-industrial - full-featured office productivity suite --
Industrial symbol styl
openoffice.org-style-oxygen - full-featured office productivity suite --
Oxygen symbol style
openoffice.org-style-tango - full-featured office productivity suite -- Tango
symbol style
openoffice.org-wiki-publisher - OpenOffice.org extension for working with
MediaWiki articles
openoffice.org-writer - full-featured office productivity suite -- word
processor
python-uno - full-featured office productivity suite -- Python interface
ttf-opensymbol - OpenSymbol TrueType font
uno-libs3 - OpenOffice.org UNO runtime environment -- public shared libraries
uno-libs3-dbg - OpenOffice.org UNO runtime environment -- public shared
library d
ure - OpenOffice.org UNO runtime environment
ure-dbg - OpenOffice.org UNO runtime environment -- debug symbols
Changes:
openoffice.org (1:3.1.1-5ubuntu1.3) karmic-security; urgency=low
.
* SECURITY UPDATE: multiple OpenOffice.org vulnerabilities.
- ooo-build/patches/dev300/SA40775.diff: buffer overflow fixes from
upstream, patch thanks to Rene Engelhard (CVE-2010-2935, CVE-2010-2936).
- ooo-build/patches/dev300/tread-invalid-path-segments-correctly.diff:
directory traversal fixes from upstream, patch thanks to Rene Engelhard
(CVE-2010-3450).
- ooo-build/patches/dev300/cws-hb22.diff: multiple fixes from upstream,
patch thanks to Rene Engelhard.
- corrupt table model in RTF parser (CVE-2010-3451)
- SwRTFParser::ReadNumSecLevel (CVE-2010-3452)
- WW8ListManager::WW8ListManager (CVE-2010-3453)
- WW8DopTypography::ReadFromMem (CVE-2010-3454)
- LD_LIBRARY_PATH current directory injection (CVE-2010-3689)
- ooo-build/patches/dev300/security-fixes-drom-cws-os145.diff: heap
overflow in PPT fix from upstream, patch thanks to Rene Engelhard
(CVE-2010-4253).
- ooo-build/patches/dev300/security-fixes-from-cws-impress208.diff: heap
overflow in TGA fix from upstream, patch thanks to Rene Engelhard
(CVE-2010-4643).
Checksums-Sha1:
0ab701db8168b8b1df1e133528ad68ba05612b96 8315
openoffice.org_3.1.1-5ubuntu1.3.dsc
778d15a53334a3d0edfe816f39f04831abccc7ae 98394550
openoffice.org_3.1.1-5ubuntu1.3.diff.gz
Checksums-Sha256:
d509f496bf961f719da373cf5fac1b7fbe7d1651a43916ef1bb28e9c691b6045 8315
openoffice.org_3.1.1-5ubuntu1.3.dsc
4b975045654849dd15af4cecbc9b584c75876561d94facd59372683ceffbd9e7 98394550
openoffice.org_3.1.1-5ubuntu1.3.diff.gz
Files:
67086789cfeefd26dc5c55a977aaeda2 8315 editors optional
openoffice.org_3.1.1-5ubuntu1.3.dsc
37e6237b2bbb0f77ba6f8a1dcadbc2ef 98394550 editors optional
openoffice.org_3.1.1-5ubuntu1.3.diff.gz
Original-Maintainer: Debian OpenOffice Team <[email protected]>
--
Karmic-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/karmic-changes
