[SECURITY] Fedora 13 Update: openoffice.org-3.2.0-12.24.fc13

Mon Jun 7 22:26:51 UTC 2010

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-9633
2010-06-07 20:42:25
--------------------------------------------------------------------------------

Name        : openoffice.org
Product     : Fedora 13
Version     : 3.2.0
Release     : 12.24.fc13
URL         : http://www.openoffice.org/
Summary     : OpenOffice.org comprehensive office suite
Description :
OpenOffice.org is an Open Source, community-developed, multi-platform
office productivity suite.  It includes the key desktop applications,
such as a word processor, spreadsheet, presentation manager, formula
editor and drawing program, with a user interface and feature set
similar to other office suites.  Sophisticated and flexible,
OpenOffice.org also works transparently with a variety of file
formats, including Microsoft Office.

Usage: Simply type "ooffice" to run OpenOffice.org or select the
requested component (Writer, Calc, Impress, etc.) from your
desktop menu. On first start a few files will be installed in the
user's home, if necessary.

--------------------------------------------------------------------------------
Update Information:

CVE-2010-0395: Security vulnerability in OpenOffice.org related to python
scripting.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Jun  5 2010 Caolán McNamara <caolanm at redhat.com> - 1:3.2.0-12.24
- Resolves: CVE-2010-0395 openoffice.org-3.2.1.pyuno.patch
- Resolves: rhbz#596807 openoffice.org-3.2.0.ooo111886.sw.layout.workaround.patch
- Protect against broken samba servers (caolanm)
- Resolves: rhbz#597820 workspace.sw321bf01.patch (dtardon)
- Resolves: rhbz#598052 workspace.cmcfixes75.patch (caolanm)
- Resolves: rhbz#598582 openoffice.org-3.2.1.ooo112027.writerfilter.avoid.recursetodeath.patch (caolanm)
- Resolves: rhbz#599287 openoffice.org-3.3.0.ooo112059.sw.avoid-null-ptr-deref.patch (dtardon)
- Resolves: rhbz#599585 workspace.os140.patch (dtardon)
- Resolves: rhbz#596980 workspace.vcl112.patch (caolanm)
* Fri May 21 2010 Caolán McNamara <caolanm at redhat.com> - 1:3.2.0-12.23
- Resolves: rhbz#594035 openoffice.org-3.3.0.ooo111758.sd.xerror.patch
* Wed May 19 2010 Caolán McNamara <caolanm at redhat.com> - 1:3.2.0-12.22
- Resolves: rhbz#593561 openoffice.org-3.3.0.ooo111699.svx.nullfield.patch
* Fri May  7 2010 Caolán McNamara <caolanm at redhat.com> - 1:3.2.0-12.21
- Resolves: rhbz#589861 [abrt] crash in DomainMapper_Impl::finishParagraph
- Resolves: rhbz#589889 don't require exact zh fonts
* Thu May  6 2010 Caolán McNamara <caolanm at redhat.com> - 1:3.2.0-12.20
- Related: rhbz#587419 copy attributes correctly (dtardon)
* Fri Apr 30 2010 Caolán McNamara <caolanm at redhat.com> - 1:3.2.0-12.19
- Resolves: rhbz#587419 [abrt] crash in SwTxtFtn::CopyFtn (dtardon)
* Wed Apr 28 2010 Caolán McNamara <caolanm at redhat.com> - 1:3.2.0-12.18
- Resolves: rhbz#586446 openoffice.org-3.3.0.ooo93818.sw.postitprint.patch
- add openoffice.org-3.2.0.ooo101131.sw.size.mismatch.patch
* Sun Apr 25 2010 Caolán McNamara <caolanm at redhat.com> - 1:3.2.0-12.17
- Resolves: rhbz#583386 docx import crash
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #574119 - CVE-2010-0395 openoffice.org Execution of Python code when browsing macros
        https://bugzilla.redhat.com/show_bug.cgi?id=574119
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update openoffice.org' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------