Oval Definition:oval:org.opensuse.security:def:20121149
Revision Date:2017-09-27Version:1
Title:CVE-2012-1149
Description:

Integer overflow in the vclmi.dll module in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted embedded image object, as demonstrated by a JPEG image in a .DOC file, which triggers a heap-based buffer overflow.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2012-1149
Platform(s):SLE SDK 10 SP4 for x86
SLE SDK 10 SP4 for X86-64
SUSE Linux Enterprise Desktop 10 SP4 for AMD64 and Intel EM64T
SUSE Linux Enterprise Desktop 10 SP4 for x86
SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP1
SUSE Linux Enterprise Software Development Kit 11 SP2
Product(s):
Definition Synopsis
  • sles10-sp4-sdk is installed
  • AND Package Information
  • libreoffice-cs less than 3.4.5.5-0.7.1
  • OR libreoffice-de less than 3.4.5.5-0.7.1
  • OR libreoffice-es less than 3.4.5.5-0.7.1
  • OR libreoffice-fr less than 3.4.5.5-0.7.1
  • OR libreoffice-galleries less than 3.4.5.5-0.7.1
  • OR libreoffice-gnome less than 3.4.5.5-0.7.1
  • OR libreoffice-hu less than 3.4.5.5-0.7.1
  • OR libreoffice-it less than 3.4.5.5-0.7.1
  • OR libreoffice-ja less than 3.4.5.5-0.7.1
  • OR libreoffice-kde less than 3.4.5.5-0.7.1
  • OR libreoffice-mono less than 3.4.5.5-0.7.1
  • OR libreoffice-pl less than 3.4.5.5-0.7.1
  • OR libreoffice-pt-BR less than 3.4.5.5-0.7.1
  • OR libreoffice-sk less than 3.4.5.5-0.7.1
  • OR libreoffice-zh-CN less than 3.4.5.5-0.7.1
  • OR libreoffice-zh-TW less than 3.4.5.5-0.7.1
  • OR libreoffice less than 3.4.5.5-0.7.1
    • BACK