It was found that crafted Microsoft Word DOC file can be used to specify a document buffer that is too small for the amount of data provided for it. Failure to detect the discrepancy allows an attacker to cause denial of service (memory corruption and application crash) and possible execution of arbitrary code.
Products affected are LibreOffice < 4.4.5 and OpenOffice <= 4.1.1.
Created libreoffice tracking bugs for this issue:
Affects: fedora-all [bug 1278825]
This issue has been addressed in the following products:
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Via RHSA-2015:2619 https://rhn.redhat.com/errata/RHSA-2015-2619.html