Bug 232880

Summary: libwpd integer overflow CVE-2007-0002
Product: [Fedora] Fedora Reporter: Kevin Kofler <kevin>
Component: libwpdAssignee: Caolan McNamara <caolanm>
Status: CLOSED ERRATA QA Contact:
Severity: high Docs Contact:
Priority: medium    
Version: 6Keywords: Security
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
URL: http://libwpd.sourceforge.net/news.html
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2007-03-20 07:34:15 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Kevin Kofler 2007-03-19 07:11:57 UTC 
Description of problem:
libwpd <=0.8.8 is vulnerable to an integer overflow bug, fixed in 0.8.9. FC6 
currently ships 0.8.6 and is not patched for CVE-2007-0002.

Version-Release number of selected component (if applicable):
libwpd-0.8.6-1

How reproducible:
Didn't try.

Steps to Reproduce:
N/A

Actual results:
Vulnerable.

Expected results:
Not vulnerable.

Additional info:
See bug 222808 for the RHEL 5 security advisory. "This update has been rated 
as having important security impact by the Red Hat Security Response Team."
Comment 1 Kevin Kofler 2007-03-20 07:34:15 UTC 
http://www.redhat.com/archives/fedora-package-announce/2007-March/msg00058.html
http://www.redhat.com/archives/fedora-package-announce/2007-March/msg00057.html

Thanks.