Apache · Apache Openoffice · CVE-2021-28129
Name of the Vulnerable Software and Affected Versions:
Apache OpenOffice version 4.1.8
Description:
A developer discovered that the DEB package of Apache OpenOffice did not install using root, but instead used a userid and groupid of 500. This caused issues with desktop integration and could allow a crafted attack on files owned by that user or group if they exist.
Recommendations:
For Apache OpenOffice version 4.1.8, upgrade to the latest version of Apache OpenOffice.