Vulnerability Solutions

The Nimsoft Cloud Monitor Periodic Vulnerability Scan checks for the vulnerability below. To see the most recently added vulnerability solutions that are scanned by WatchMouse, go to the Vulnerability Solutions overview

Category: SuSE Local Security Checks Risk factor: High Added: 18 Mar 2010
Synopsis:

The remote SuSE system is missing a security patch for OpenOffice_org-base-drivers-postgresql

Description:

This update of OpenOffice_org includes fixes for the following vulnerabilities:
- CVE-2009-0217: XML signature weakness - CVE-2009-2949: XPM Import Integer Overflow - CVE-2009-2950: GIF Import Heap Overflow - CVE-2009-3301: MS Word sprmTDefTable Memory Corruption - CVE-2009-3302: MS Word sprmTDefTable Memory Corruption - CVE-2010-0136: In the ooo-build variant of OpenOffice_org VBA Macro support does not honor Macro security settings.

See also:

https://bugzilla.novell.com/show_bug.cgi?id=564497
https://bugzilla.novell.com/show_bug.cgi?id=564503
https://bugzilla.novell.com/show_bug.cgi?id=566030
https://bugzilla.novell.com/show_bug.cgi?id=521564
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2949
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2950
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0136
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3301
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3302
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0217

Solution:

Run yast to install the security patch for OpenOffice_org-base-drivers-postgresql

Risk factor:

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)