CVE-2012-4233

Name of the Vulnerable Software and Affected Versions LibreOffice versions 3.5.x through 3.5.7.1 LibreOffice versions 3.6.x through 3.6.0 OpenOffice.org (OOo) (affected versions not specified)

Description The issue allows remote attackers to cause a denial of service via crafted files, including odt, ODG, wmf, and xls files, which can lead to a NULL pointer dereference. This is related to errors in number processing within multiple components of the OpenOffice.org module in the LibreOffice office program suite.

Recommendations For LibreOffice versions 3.5.x through 3.5.7.1, update to version 3.5.7.2 or later. For LibreOffice versions 3.6.x through 3.6.0, update to version 3.6.1 or later. For OpenOffice.org (OOo), at the moment, there is no information about a newer version that contains a fix for this vulnerability.