Vulnerability Solutions

The WatchMouse Periodic Vulnerability Scan checks for the vulnerability below. To see the most recently added vulnerability solutions that are scanned by WatchMouse, go to the Vulnerability Solutions overview

SuSE 11.0 Security Update: OpenOffice_org (2010-02-11)
Category: SuSE Local Security Checks	Risk factor: High	Added: 18 Mar 2010
Synopsis: The remote SuSE system is missing a security patch for OpenOffice_org Description: This update of OpenOffice_org includes fixes for the following vulnerabilities: - CVE-2009-0217: XML signature weakness - CVE-2009-2949: XPM Import Integer Overflow - CVE-2009-2950: GIF Import Heap Overflow - CVE-2009-3301: MS Word sprmTDefTable Memory Corruption - CVE-2009-3302: MS Word sprmTDefTable Memory Corruption - CVE-2010-0136: In the ooo-build variant of OpenOffice_org VBA Macro support does not honor Macro security settings. See also: https://bugzilla.novell.com/show_bug.cgi?id=564497 https://bugzilla.novell.com/show_bug.cgi?id=564503 https://bugzilla.novell.com/show_bug.cgi?id=566030 https://bugzilla.novell.com/show_bug.cgi?id=521564 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2949 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2950 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0136 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3301 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3302 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0217 Solution: Run yast to install the security patch for OpenOffice_org Risk factor: High / CVSS Base Score : 9.3 (CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)