Ubuntu Security Notice USN-406-1
12th January, 2007
openoffice.org/-amd64, openoffice.org2/-amd64 vulnerability
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 6.06 LTS
- Ubuntu 5.10
Details
An integer overflow was discovered in OpenOffice.org's handling of WMF
files. If a user were tricked into opening a specially crafted WMF
file, an attacker could execute arbitrary code with user privileges.
Update instructions
The problem can be corrected by updating your system to the following package version:
- Ubuntu 6.06 LTS:
- openoffice.org-core 2.0.2-2ubuntu12.2
- Ubuntu 5.10:
- openoffice.org2-core 1.9.129-0.1ubuntu4.2
To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.
In general, a standard system upgrade is sufficient to effect the
necessary changes.