Issue 96342 - "rtl_allocateMemory() Integer Overflow Vulnerability"
Summary: "rtl_allocateMemory() Integer Overflow Vulnerability"
Status: CLOSED NOT_AN_OOO_ISSUE
Alias: None
Product: Native-Lang
Classification: NLC
Component: www (show other issues)
Version: current
Hardware: All Windows XP
: P1 (highest) Trivial
Target Milestone: ---
Assignee: jbf.faure
QA Contact: issues@fr
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2008-11-19 10:16 UTC by gn44
Modified: 2012-01-31 01:01 UTC (History)
1 user (show)

See Also:
Issue Type: DEFECT
Latest Confirmation in: ---
Developer Difficulty: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this issue.
Description gn44 2008-11-19 10:16:23 UTC 
"rtl_allocateMemory() Integer Overflow Vulnebility"  The problem was addressed
for the OOo 2.4, but my antivirus (Kaspersky 8.0.0) revealed it again for the
OOo 3.0 also. The solution proposed is to go back to OOo 2.4.1.which is a return
backward. How to correct this?
Comment 1 jbf.faure 2008-11-19 22:00:50 UTC 
Cette faille de sécurité ne concerne que les versions inférieures à 2.4.1. Si
vous avez installé la version 3.0 vous n'êtes pas concerné.
C'est ce qui est indiqué sur la page 
http://www.viruslist.com/fr/advisories/30599 et la page de OpenOffice.org que
celle-ci donne en référence :
http://www.openoffice.org/security/cves/CVE-2008-2152.html
Il est dommage que votre anti-virus soit incapable de faire la différence entre
les versions de OpenOffice.org.
Comment 2 jbf.faure 2008-11-19 22:01:17 UTC 
closing.