Package: openoffice.org Vulnerability: remote Problem type: remote CVE ID: CVE-2012-4233 Description: High-Tech Bridge SA Security Research Lab found multiple null-pointer dereference vulnerabilities in OpenOffice, which can cause application crashes or potentially arbitrary code execution when handling specially crafted files. Affected File Types: LWP (Lotus Word Pro), ODG, PPT (MS Powerpoint 2003), and XLS (MS Excel 2003). Fixed Versions: - Stable Distribution (squeeze): 1:3.2.1-11+squeeze8 - Testing Distribution (wheezy): 1:3.5.4+dfsg-3 - Unstable Distribution (sid): 1:3.5.4+dfsg-3 Openoffice.org Replacement: Replaced by LibreOffice in testing and unstable distributions. Recommendation: Upgrade your openoffice.org packages.