Language Selection

English French German Italian Portuguese Spanish

OpenOffice TIFF flaw affects Windows, Linux and Mac

Filed under
Security
OOo

Security experts have discovered TIFF-based buffer overflow vulnerabilities in OpenOffice, which could allow attackers to remotely execute code on Linux, Windows or Apple Mac-based computers.

OpenOffice versions 2.0.4 and prior are vulnerable to maliciously crafted TIFF file, which could be delivered in an e-mail attachment, published on a Web site or shared using P2P software. The next version of OpenOffice (version 2.3) arrived on 17 September and is not affected by the flaw.

The vulnerability was discovered by researchers at iDefense, who claim that the OpenOffice TIFF parsing code is flawed.

"At this stage, it's only confirmed on Linux," said Baumhoff.

More Here




More in Tux Machines

SuperX 3.0 Beta Released

SuperX, a relatively new distribution, just released beta for its upcoming 3.0 release. SuperX is a KDE centric distribution, and focuses on giving a polished KDE experience (a marketing statement, SuperX guys use). Read more

Google and ODF

  • Fuzz about Google supporting odf
    First of all because the support comes way too late. Secondly because its not even close to be good. Back several years ago Google was politically supporting the process of getting odf approved as an open standard but they never really bothered. The business was clearly to keep both odf and ooxml/docx out of their products and keep their own proprietary document format. Implementing good and solid interoperability is actually not difficult but it is a huge task. Google could have done this three or four years ago if they wanted to. But they didn't. Both proprietary software vendors has been busy making interoperability difficult while the providers of true open standards has been improving interoperability month by month.
  • Google Promises Better Compatibility with Open Source Documents
    Google (GOOG) may soon be taking open OpenDocumentFormat (ODF), the native file format in virtually all modern open source word processors, like LibreOffice and OpenOffice, more seriously. That's according to a statement from Google's open source chief speaking about the future of the company's cloud-based app suite.

Microsoft tells J.S. Joust devs their game is “NOT possible” on Windows

PlayStation Move-enabled game only on Mac and Linux for now, will be open sourced. Read more