Univention Bugzilla – Bug 37073
libreoffice: Memory corruption in RTF processing (4.0)
Last modified: 2017-10-26 13:54:44 CEST
Opening a malformed RTF document may lead to the potential execution of arbitrary code (CVE-2014-9093)
Execution of arbitrary code when opening a malformed document due to missing input sanitising in Libreoffice's filter for HWP documents(CVE-2015-1774) Both above are fixed in 1:3.5.4+dfsg2-0+deb7u4.
* libreoffice 1:3.5.4+dfsg2-0+deb7u4 was imported and build to scope errata4.0-3 (amd64 build in progress). * YAML (r63405, r63415): 2015-09-02-libreoffice.yaml Build time on dimma for i386: 10h19m ^.^
OK: DEBIAN_FRONTEND=noninteractive aptitude install -y '?source-package(^libreoffice$)?not(?name(udeb))' OK: libreoffice /usr/lib/libreoffice/CREDITS.odt OK: /usr/share/doc/libreoffice/changelog.Debian.gz OK: r63405 OK: r63415 OK: 2015-09-02-libreoffice.yaml OK: CVE-2014-9093 OK: CVE-2015-1774 OK: errata-announce -V 2015-09-02-libreoffice.yaml
<http://errata.software-univention.de/ucs/4.0/316.html>