Advertisement

Latest News

[ Windows | Linux | Apple ]

· Microsoft Office Clone Updates Interface, Improves File Support
· Windows Firewall Control 4.0.0.0 released
· 10 amazing Linux desktop environments you've probably never seen
· Microsoft Office security flaw hits thousands in latest hacker attack
· Kubuntu 13.04 Raring Ringtail Review
· Windows Mobile 7 concept video shows why Microsoft dumped the platform
· Building a Thin Mini-ITX PC and more
· Microsoft wants consumers to control the camera by voice, according to filed patent
· Dell replays Windows 8 blame card as PC sales slide
· m23 rock 13.1 released

Upcoming News

· [RHSA-2013:0841-01] Important: kernel security update
· [RHSA-2013:0829-01] Important: kernel-rt security and bug fix update
· [RHSA-2013:0840-01] Important: kernel security update
· A4Tech Bloody Gun3 UC3 Headshot V8 Gaming Mouse Review - $40?= For The Ultimate Package
· Win a Kingston HyperX Beast 16GB 2133MHz Memory Kit @ Bigbruin.com
· HOT Raspberry Pi - A DIY Mini Desktop PC Build Project
· Seagate 600 Pro SSD Review (400GB) - Better Warranty, ?= 28% OP and Power Loss Protection
· REVIEW: PowerColor 7790 Turbo Duo @ PureOverclock
· MSI Z77A-GD65 Gaming Series Motherboard Review @ Legit Reviews
· Cooltek Coolcube Maxi Black @ techPowerUp

Linux Compatibility

· Dell Dimension 9100
· CL-CAM50001 UPC=3700284609322
· DFE 520 TX
· nVidia GeForce4 MX 440
· Gore: Ultimate Soldier
· SMC2802W V2 wi-fi 54Mbps PCI card
· Wireless modem router N300
· Dell P780
· ASUS A7V8X
· BricsCAD for Linux

New Forum Topics

· shutdown link ?
by: estirwent
on: 2013-05-11 17:46
18 replies, 6360 views

· Laptop keyboard drank soda
by: Zenn
on: 2013-04-30 00:27
1 replies, 649 views

· connecting to to internet with ubuntu
by: Zenn
on: 2013-04-30 00:26
2 replies, 4510 views

· Need Linux-compatible PS/2 expansion card
by: Zenn
on: 2013-04-30 00:26
1 replies, 713 views

· irql_not_less_or_equal blue screen
by: Zenn
on: 2013-04-30 00:25
2 replies, 1104 views

News Channels

· Drivers
· Guides
· Reviews
· Security
· Software
· Press Release
· Updates
· Interviews
· Linux
· General
· Debian
· Red Hat
· Slackware
· Gentoo
· Mandriva
· White Box
· SUSE
· GNOME
· KDE
· CentOS
· Ubuntu
· MEPIS
· Android

What's New

Login to see an overview of all news stories since your last visit.

Welcome to our website

To take full advantage of all features you need to login or register. Registration is completely free and takes only a few seconds.

KDE Security Advisory: KOffice/KWord RTF import buffer overflow

Posted by Philipp Esselbach on: 10/11/2005 08:42 AM [ Print | 0 comment(s) ]

KDE Security Advisory: KWord RTF import buffer overflow
Original Release Date: 2005-10-11
URL: http://www.kde.org/info/security/advisory-20051011-1.txt

0. References

CAN-2005-2971
CESA-2005-005

1. Systems affected:

All KOffice releases starting from KOffice 1.2.0 up to including KOffice 1.4.1.

2. Overview:

Chris Evans reported a heap based buffer overflow in the RTF importer of KWord.

3. Impact:

Opening specially crafted RTF files in KWord can cause execution of abitrary code.

4. Solution:

Source code patches have been made available which fix these vulnerabilities. Contact your OS vendor / binary package provider for information about how to obtain updated binary packages.

5. Patch:

Patch for KOffice 1.4.1 is available from

ftp://ftp.kde.org/pub/kde/security_patches :

9f77b327119fd1db0752dab785e2a975 post-koffice-1.4.1-rtfimport.diff

Patch for KOffice 1.3.5 is available from

ftp://ftp.kde.org/pub/kde/security_patches :

71a1baa8244dbcc1bfc2bd3c3e3dd40f post-koffice-1.3.5-rtfimport.diff

Patch for KOffice 1.2.1 is available from

ftp://ftp.kde.org/pub/kde/security_patches :

b36488a186aded0f5e812397af3c689a post-koffice-1.2.1-rtfimport.diff

All products mentioned are registered trademarks or trademarks of their respective owners.
© 2002-2013 Esselbach Internet Solutions - All Rights Reserved. Terms and privacy policy
Powered by Contentteller® Business Edition