CVE 2012-0037
Redland Raptor (aka libraptor) before 2.0.7, as used by OpenOffice 3.3 and 3.4 Beta, LibreOffice before 3.4.6 and 3.5.x before 3.5.1, and other products, allows user-assisted remote attackers to read arbitrary files via a crafted XML external entity (XXE) declaration and reference in an RDF document.
Related bugs and status
CVE-2012-0037 (Candidate) is related to these bugs:
Bug #882588: LibreOffice/Mozilla integration broken
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 882588 | LibreOffice/Mozilla integration broken | libreoffice (Ubuntu) | Undecided | Fix Released | ||
| 882588 | LibreOffice/Mozilla integration broken | firefox (Ubuntu) | Undecided | Invalid | ||
Bug #959799: CVE-2012-0037
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 959799 | CVE-2012-0037 | linux (Ubuntu) | Low | New | ||
| 959799 | CVE-2012-0037 | linux-fsl-imx51 (Ubuntu) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-mvl-dove (Ubuntu) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-maverick (Ubuntu) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-natty (Ubuntu) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-ti-omap4 (Ubuntu) | Low | New | ||
| 959799 | CVE-2012-0037 | linux-ec2 (Ubuntu) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux (Ubuntu Precise) | Low | New | ||
| 959799 | CVE-2012-0037 | linux-ec2 (Ubuntu Precise) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-fsl-imx51 (Ubuntu Precise) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-maverick (Ubuntu Precise) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-natty (Ubuntu Precise) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-mvl-dove (Ubuntu Precise) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-ti-omap4 (Ubuntu Precise) | Low | New | ||
| 959799 | CVE-2012-0037 | linux (Ubuntu Oneiric) | Low | New | ||
| 959799 | CVE-2012-0037 | linux-ec2 (Ubuntu Oneiric) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-fsl-imx51 (Ubuntu Oneiric) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-maverick (Ubuntu Oneiric) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-natty (Ubuntu Oneiric) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-mvl-dove (Ubuntu Oneiric) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-ti-omap4 (Ubuntu Oneiric) | Low | New | ||
| 959799 | CVE-2012-0037 | linux (Ubuntu Natty) | Low | New | ||
| 959799 | CVE-2012-0037 | linux-ec2 (Ubuntu Natty) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-fsl-imx51 (Ubuntu Natty) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-maverick (Ubuntu Natty) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-natty (Ubuntu Natty) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-mvl-dove (Ubuntu Natty) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-ti-omap4 (Ubuntu Natty) | Low | New | ||
| 959799 | CVE-2012-0037 | linux (Ubuntu Maverick) | Low | New | ||
| 959799 | CVE-2012-0037 | linux-ec2 (Ubuntu Maverick) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-fsl-imx51 (Ubuntu Maverick) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-maverick (Ubuntu Maverick) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-natty (Ubuntu Maverick) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-mvl-dove (Ubuntu Maverick) | Low | New | ||
| 959799 | CVE-2012-0037 | linux-ti-omap4 (Ubuntu Maverick) | Low | New | ||
| 959799 | CVE-2012-0037 | linux (Ubuntu Lucid) | Low | New | ||
| 959799 | CVE-2012-0037 | linux-ec2 (Ubuntu Lucid) | Low | New | ||
| 959799 | CVE-2012-0037 | linux-fsl-imx51 (Ubuntu Lucid) | Low | New | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-maverick (Ubuntu Lucid) | Low | New | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-natty (Ubuntu Lucid) | Low | New | ||
| 959799 | CVE-2012-0037 | linux-mvl-dove (Ubuntu Lucid) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-ti-omap4 (Ubuntu Lucid) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux (Ubuntu Hardy) | Low | New | ||
| 959799 | CVE-2012-0037 | linux-ec2 (Ubuntu Hardy) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-fsl-imx51 (Ubuntu Hardy) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-maverick (Ubuntu Hardy) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-natty (Ubuntu Hardy) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-mvl-dove (Ubuntu Hardy) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-ti-omap4 (Ubuntu Hardy) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-oneiric (Ubuntu) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-oneiric (Ubuntu Hardy) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-oneiric (Ubuntu Lucid) | Low | New | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-oneiric (Ubuntu Maverick) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-oneiric (Ubuntu Natty) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-oneiric (Ubuntu Oneiric) | Low | Invalid | ||
| 959799 | CVE-2012-0037 | linux-lts-backport-oneiric (Ubuntu Precise) | Low | Invalid | ||
See the 
CVE page on Mitre.org
for more details.
