Launchpad CVE tracker

CVE 2012-1149

Integer overflow in the vclmi.dll module in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted embedded image object, as demonstrated by a JPEG image in a .DOC file, which triggers a heap-based buffer overflow.

Related bugs and status

CVE-2012-1149 (Candidate) is related to these bugs:

Bug #882588: LibreOffice/Mozilla integration broken

Summary				In	Importance	Status
	882588	LibreOffice/Mozilla integration broken		libreoffice (Ubuntu)	Undecided	Fix Released
	882588	LibreOffice/Mozilla integration broken		firefox (Ubuntu)	Undecided	Invalid

See the

CVE page on Mitre.org for more details.

References

MISC: http://securitytracker...
MISC: http://archives.neohap...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://www.securityfoc...
MISC: http://secunia.com/adv...
MISC: http://www.osvdb.org/8...
MISC: http://www.debian.org/...
MISC: http://www.debian.org/...
MISC: http://lists.fedorapro...
MISC: http://lists.fedorapro...
MISC: http://security.gentoo...
MISC: http://www.gentoo.org/...
MISC: http://www.mandriva.co...
MISC: http://www.mandriva.co...
MISC: http://rhn.redhat.com/...
MISC: http://www.libreoffice...
MISC: http://www.openoffice....
MISC: https://exchange.xforc...

Launchpad.net

CVE 2012-1149

Related bugs and status

Related bugs

References