|
ALARM Group ALERT - click for a description of ALARM, The Computing Alert System
Alert Number: 063006-01
Alert Date: 6/30/06
Alert Title: Updated version of Open Office fixes security vulnerabilities
Update-to: none
OS/Platform/Application:
Open Office v 1.1.x
Open Office v 2.0.x
Category: ALERT
Severity: HIGH
Attention: Administrators, Desktop Support Personnel, and users of systems that utilize Open Office. |
Summary: OpenOffice.org has recently released version 2.0.3 of its popular office suite product. According to the vendor, 2.0.3 fixes "three security vulnerabilities", which are rated as "critical" by various Internet security-related agencies. A similar release is planned for users of OpenOffice 1.1.5 soon.
Recommended Actions: Users of OpenOffice version 2.0.x are encouraged to read the vendor's security bulletin and (if appropriate) install version 2.0.3 at their earliest convenience. Users of OpenOffice version 1.1.x are encouraged to check the
OpenOffice.org website for release of version 1.1.5.
ITS Actions: No additional actions are being taken to address this issue at the current time.
Resources:
OpenOffice.org Security Bulletin 2006-06-29:
http://www.openoffice.org/security/bulletin-20060629.html
OpenOffice.org home page:
http://www.openoffice.org/index.html
FrSirt article on vulnerabilities:
http://www.frsirt.com/english/advisories/2006/2607
