Novell

This is Your Open EnterpriseTM

OpenOffice for Windows 2.1 Novell Edition, security patch

This document (5006523) is provided subject to the disclaimer at the end of this document.

patches this patch supersedes

This patch does not supersede any other patches.

patches that supersede this patch

This patch is not superseded by any other patches.

patch attributes

Security patch: Yes
Priority: Mandatory
Distribution Type: Public
http://download.novell.com/Download?buildid=JRPJIrN8A8Q~

document

Revision: 9
Document ID: 5006523
Creation Date: 2007-10-15 10:27:13
Modified Date: 2008-05-14 14:08:55

abstract

This mainly addresses a security vulnerability in OpenOffice exposed by maliciously crafted TIFF files.

details

Overview:
Update to Open Office 2.1 to address a security vulnerability along with a few bug fixes.

System Requirements:
Open Office 2.1

Installation:
1) Download the msp file on a Windows machine with the Novell OOo 2.1 installed.
2) Double click the msp file and proceed through the install.
3) Restart the system.

Uninstalling:
1) Start | Settings | Control Panel | Add or Remove Programs
2) Select the Show Updates option
3) Select OOo-2.1.0-16-5.msp
4) Remove the patch

Known Problems and Limitations:

Technical Support Information:

- fixed vulnerability in TIFF File Parsing nNumStripOffsets, CVE-2007-2834
-two fixes to get smart cards working; find locked certs; allow more types of signing certs [n#277551]
-fix some 502 errors in an .xls produced by French MS Excel; only English keywords are processed by OOo, so the French ones has to be translated [n#274424]
-incorrect warning message when loading Excel file [n#293909]
-allow Excel A1 style destination address [n#294522]
-import and export Excel's sheet protection options, and use it to constrain cell cursor movement [n#274482]
-emf files reading improvement [n#232232]
-database fields with leading 0 vanish from tables [n#239193]
-"Save As" via webdav [n#294620]
- text search optimizations [n#299158]
-images in .doc file not displayed properly [n#272574]
#81974 - Passed Regression Test
-VBA stuff:
*Workbooks.Open macro behavior [n#292901]
* function/method calls with parameters in brackets failure [n#292861]
* several other issues in vbarange and vbahelper [n#290724]
* export to ms format for autoshape macro bindings/associations [n#304739]
* ActiveWindow.DisplayVerticalBar not implemented [n#292877]
* Application.DisplayFormulaBar not implemented [n#309965]
* SaveCopyAs not implemented [n#288274]
* Sheets collection needs to handle index as Array of indices [n#327696]

security fixes

- fixed vulnerability in TIFF File Parsing nNumStripOffsets, CVE-2007-2834

file contents

Files IncludedSizeDate
OOo-2.1.0-16-5.msp15.9 MB (16749568)2007-10-15 09:54:11
readme_5006523.htmlN/A2008-05-14 14:08:56

disclaimer

The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information. Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.

Novell is a registered trademark of Novell, Inc. in the United States and other countries. SUSE is a registered trademark of SUSE Linux AG, a Novell business. *All third-party trademarks are the property of their respective owners.

© 2007 Novell, Inc. All Rights Reserved.