FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Apache OpenOffice 4.1.2 -- Memory Corruption Vulnerability (Impress Presentations)

Affected packages
apache-openoffice < 4.1.2_8
apache-openoffice-devel < 4.2.1753426,4

Details

VuXML ID 72f71e26-4f69-11e6-ac37-ac9e174be3af
Discovery 2016-07-17
Entry 2016-07-21

The Apache OpenOffice Project reports:

An OpenDocument Presentation .ODP or Presentation Template .OTP file can contain invalid presentation elements that lead to memory corruption when the document is loaded in Apache OpenOffice Impress. The defect may cause the document to appear as corrupted and OpenOffice may crash in a recovery-stuck mode requiring manual intervention. A crafted exploitation of the defect can allow an attacker to cause denial of service (memory corruption and application crash) and possible execution of arbitrary code.

References

CVE Name CVE-2016-1513
URL http://www.openoffice.org/security/cves/CVE-2015-4551.html