Language Selection

English French German Italian Portuguese Spanish

OpenOffice TIFF flaw affects Windows, Linux and Mac

Filed under
Security
OOo

Security experts have discovered TIFF-based buffer overflow vulnerabilities in OpenOffice, which could allow attackers to remotely execute code on Linux, Windows or Apple Mac-based computers.

OpenOffice versions 2.0.4 and prior are vulnerable to maliciously crafted TIFF file, which could be delivered in an e-mail attachment, published on a Web site or shared using P2P software. The next version of OpenOffice (version 2.3) arrived on 17 September and is not affected by the flaw.

The vulnerability was discovered by researchers at iDefense, who claim that the OpenOffice TIFF parsing code is flawed.

"At this stage, it's only confirmed on Linux," said Baumhoff.

More Here




More in Tux Machines

Lumina Desktop 0.8.6 Released!

Just in time for PC-BSD & FreeBSD 10.2 (coming soon), the Lumina desktop has been updated to version 0.8.6! This version contains a number of updates for non-English users (following up all the new translations which are now available), as well as a number of important bug-fixes, and support for an additional FreeDesktop specification. The PC-BSD “Edge” packages have already been updated to this version and the FreeBSD ports tree will be getting this update very soon as well. Read more

Find The Perfect Linux-Compatible PC With Ubuntu's Hardware Database

Some PCs are more difficult to run Linux on than others — it’s all about the drivers. Some laptops are available with Linux pre-installed, but plenty aren’t — even though they may make great Linux PCs. The Ubuntu Certified Hardware database helps you find Linux-compatible PCs. Most computers can run Linux, but some are much easier than others. Certain hardware manufacturers (whether it’s Wi-Fi cards, video cards, or other buttons on your laptop) are more Linux-friendly than others, which means installing drivers and getting things to work will be less of a hassle. Read more

GNOME Software Package Manager App Updated for GNOME 3.16 to Fix Multiple Bugs

The GNOME Project released earlier today, August 3, the fifth maintenance release of the stable GNOME Software package manager application for the GNOME 3.16 desktop environment, a version that fixes seven issues. Read more

Linux Kernel 4.1.4 LTS Released with Numerous Updated Drivers, ARM64 Improvements

Today, August 3, Greg Kroah-Hartman announced the release and immediate availability for download of the fourth maintenance release of the stable, long-term supported Linux 4.1 kernel. Read more