content/security/cves/CVE-2018-11790.html - openoffice-org - Git at Google

 <!DOCTYPE html>
 <html>
   <head>
      <title>CVE-2018-11790</title>
      <style type="text/css"></style>
   </head>

   <body>
     <p>
       <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=2018-11790">
 	CVE-2018-11790
       </a>
     </p>
     <p>
       <a href="https://www.openoffice.org/security/cves/CVE-2018-11790.html">
 	Apache OpenOffice Advisory
       </a>
     </p>

       <p style="text-align:center; font-size:largest">
         <strong>CVE-2018-11790 Arithmetic overflow and wrap around during
 	  sting length calculation
 	</strong>
       </p>

       <p style="text-align:center; font-size:larger">
         <strong>Fixed in Apache OpenOffice 4.1.6</strong>
       </p>

       <p><strong>Description</strong></p>


       <p> When loading a document with smaller end line termination then the
           operating system uses, the defect occurs.
 	  In this case OpenOffice runs into an Arithmetic Overflow at a string
 	  length calculation.
       </p>

       <p><strong>Severity: Medium</strong></p>

       <p>There are no known exploits of this vulnerability.<br />
          A proof-of-concept demonstration exists.</br>
          <a href=https://ssd-disclosure.com/index.php/archives/3758>
           ssd-disclosure
 	 </a>
       </p>

       <p>Thanks to the reporter for discovering this issue.</p>

       <p>
         <strong>Vendor: The Apache Software Foundation</strong>
       </p>

       <p>
         <strong>Versions Affected</strong>
       </p>

       <p>
         All Apache OpenOffice versions 4.1.5 and older are affected.<br />
         OpenOffice.org versions are also affected.
       </p>

       <p>
         <strong>Mitigation</strong>
       </p>

       <p>
         Install Apache OpenOffice 4.1.6 for the latest maintenance and
         cumulative security fixes.  Use the Apache OpenOffice
         <a href="https://www.openoffice.org/download/">download page</a>.
       </p>

       <p>
         <strong>Further Information</strong>
       </p>
       <p>For additional information and assistance, consult the
         <a href="https://forum.openoffice.org/">
 	  Apache OpenOffice Community Forums
 	</a>
         or make requests to the
         <a href="mailto:users@openoffice.apache.org">
 	  users@openoffice.apache.org
 	</a>
         public mailing list.
       </p>
         <p>The latest information on Apache OpenOffice security bulletins
         can be found at the
 	<a href="https://www.openoffice.org/security/bulletin.html">
 	  Bulletin Archive page
 	</a>.
       </p>


       <hr />

       <p>
         <a href="http://security.openoffice.org">Security Home</a> -&gt;
 	<a href="http://www.openoffice.org/security/bulletin.html">
           Bulletin
 	</a> -&gt;
 	<a href="https://www.openoffice.org/security/cves/CVE-2018-11790.html">
 	  CVE-2018-11790
 	</a>
       </p>
   </body>
 </html>
	<!DOCTYPE html>
	<html>
	<head>
	<title>CVE-2018-11790</title>
	<style type="text/css"></style>
	</head>

	<body>
	<p>
	<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=2018-11790">
	CVE-2018-11790
	</a>
	</p>
	<p>
	<a href="https://www.openoffice.org/security/cves/CVE-2018-11790.html">
	Apache OpenOffice Advisory
	</a>
	</p>

	<p style="text-align:center; font-size:largest">
	<strong>CVE-2018-11790 Arithmetic overflow and wrap around during
	sting length calculation
	</strong>
	</p>

	<p style="text-align:center; font-size:larger">
	<strong>Fixed in Apache OpenOffice 4.1.6</strong>
	</p>

	<p><strong>Description</strong></p>


	<p> When loading a document with smaller end line termination then the
	operating system uses, the defect occurs.
	In this case OpenOffice runs into an Arithmetic Overflow at a string
	length calculation.
	</p>

	<p><strong>Severity: Medium</strong></p>

	<p>There are no known exploits of this vulnerability.<br />
	A proof-of-concept demonstration exists.</br>
	<a href=https://ssd-disclosure.com/index.php/archives/3758>
	ssd-disclosure
	</a>
	</p>

	<p>Thanks to the reporter for discovering this issue.</p>

	<p>
	<strong>Vendor: The Apache Software Foundation</strong>
	</p>

	<p>
	<strong>Versions Affected</strong>
	</p>

	<p>
	All Apache OpenOffice versions 4.1.5 and older are affected.<br />
	OpenOffice.org versions are also affected.
	</p>

	<p>
	<strong>Mitigation</strong>
	</p>

	<p>
	Install Apache OpenOffice 4.1.6 for the latest maintenance and
	cumulative security fixes. Use the Apache OpenOffice
	<a href="https://www.openoffice.org/download/">download page</a>.
	</p>

	<p>
	<strong>Further Information</strong>
	</p>
	<p>For additional information and assistance, consult the
	<a href="https://forum.openoffice.org/">
	Apache OpenOffice Community Forums
	</a>
	or make requests to the
	<a href="mailto:users@openoffice.apache.org">
	users@openoffice.apache.org
	</a>
	public mailing list.
	</p>
	<p>The latest information on Apache OpenOffice security bulletins
	can be found at the
	<a href="https://www.openoffice.org/security/bulletin.html">
	Bulletin Archive page
	</a>.
	</p>


	<hr />

	<p>
	<a href="http://security.openoffice.org">Security Home</a> ->
	<a href="http://www.openoffice.org/security/bulletin.html">
	Bulletin
	</a> ->
	<a href="https://www.openoffice.org/security/cves/CVE-2018-11790.html">
	CVE-2018-11790
	</a>
	</p>
	</body>
	</html>