Advisories MDKSA-2007:063: Updated libwpd packages to address heap overflow vulnerabilities

[paul]

iDefense reported several overflow bugs in libwpd. An attacker

could create a carefully crafted Word Perfect file that could cause

an application linked with libwpd, such as OpenOffice, to crash or

possibly execute arbitrary code if the file was opened by a victim.

 

Updated packages have been patched to address this issue.