Release date:
Updated on:
Affected Systems:
Debian Linux 6.0 x
Libreoffice
Description:
--------------------------------------------------------------------------------
Bugtraq id: 56352
Cve id: CVE-2012-4233
LibreOffice is a suite that can be executed on various platforms and is compatible with other major office software. OpenOffice was originally Sun's commercial Office software-StarOffice. After Sun's public code, it was officially named OpenOffice development plan.
LibreOffice and OpenOffice have multiple NULL pointer reference vulnerabilities. Attackers can exploit these vulnerabilities to cause application crash and execute arbitrary code on the affected site.
<* Source: High-Tech Bridge Security Research Lab
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Libreoffice
-----------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.libreoffice.org/