Ubuntu Security Notice USN-188-1
29th September, 2005
abiword vulnerability
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 5.04
- Ubuntu 4.10
Details
Chris Evans discovered a buffer overflow in the RTF import module of
AbiWord. By tricking a user into opening an RTF file with specially
crafted long identifiers, an attacker could exploit this to execute
arbitrary code with the privileges of the AbiWord user.
Update instructions
The problem can be corrected by updating your system to the following package version:
- Ubuntu 5.04:
- abiword-gnome
- abiword
- Ubuntu 4.10:
- abiword-gnome
- abiword
To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.
None