| <!DOCTYPE html> |
| <html> |
| <head> |
| <title>CVE-2018-11790</title> |
| <style type="text/css"></style> |
| </head> |
| |
| <body> |
| <p> |
| <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=2018-11790"> |
| CVE-2018-11790 |
| </a> |
| </p> |
| <p> |
| <a href="https://www.openoffice.org/security/cves/CVE-2018-11790.html"> |
| Apache OpenOffice Advisory |
| </a> |
| </p> |
| |
| <p style="text-align:center; font-size:largest"> |
| <strong>CVE-2018-11790 Arithmetic overflow and wrap around during |
| sting length calculation |
| </strong> |
| </p> |
| |
| <p style="text-align:center; font-size:larger"> |
| <strong>Fixed in Apache OpenOffice 4.1.6</strong> |
| </p> |
| |
| <p><strong>Description</strong></p> |
| |
| |
| <p> When loading a document with smaller end line termination then the |
| operating system uses, the defect occurs. |
| In this case OpenOffice runs into an Arithmetic Overflow at a string |
| length calculation. |
| </p> |
| |
| <p><strong>Severity: Medium</strong></p> |
| |
| <p>There are no known exploits of this vulnerability.<br /> |
| A proof-of-concept demonstration exists.</br> |
| <a href=https://ssd-disclosure.com/index.php/archives/3758> |
| ssd-disclosure |
| </a> |
| </p> |
| |
| <p>Thanks to the reporter for discovering this issue.</p> |
| |
| <p> |
| <strong>Vendor: The Apache Software Foundation</strong> |
| </p> |
| |
| <p> |
| <strong>Versions Affected</strong> |
| </p> |
| |
| <p> |
| All Apache OpenOffice versions 4.1.5 and older are affected.<br /> |
| OpenOffice.org versions are also affected. |
| </p> |
| |
| <p> |
| <strong>Mitigation</strong> |
| </p> |
| |
| <p> |
| Install Apache OpenOffice 4.1.6 for the latest maintenance and |
| cumulative security fixes. Use the Apache OpenOffice |
| <a href="https://www.openoffice.org/download/">download page</a>. |
| </p> |
| |
| <p> |
| <strong>Further Information</strong> |
| </p> |
| <p>For additional information and assistance, consult the |
| <a href="https://forum.openoffice.org/"> |
| Apache OpenOffice Community Forums |
| </a> |
| or make requests to the |
| <a href="mailto:users@openoffice.apache.org"> |
| users@openoffice.apache.org |
| </a> |
| public mailing list. |
| </p> |
| <p>The latest information on Apache OpenOffice security bulletins |
| can be found at the |
| <a href="https://www.openoffice.org/security/bulletin.html"> |
| Bulletin Archive page |
| </a>. |
| </p> |
| |
| |
| <hr /> |
| |
| <p> |
| <a href="http://security.openoffice.org">Security Home</a> -> |
| <a href="http://www.openoffice.org/security/bulletin.html"> |
| Bulletin |
| </a> -> |
| <a href="https://www.openoffice.org/security/cves/CVE-2018-11790.html"> |
| CVE-2018-11790 |
| </a> |
| </p> |
| </body> |
| </html> |