Apache OpenOffice is an open-source office software suite for word + processing, spreadsheets, presentations, graphics, databases and more. +
+An exploitable out-of-bounds vulnerability exists in OpenOffice Impress + when handling MetaActions. +
+A remote attacker could entice a user to open a specially crafted + OpenDocument Presentation .ODP or Presentation Template .OTP file using + OpenOffice Impress, possibly resulting in execution of arbitrary code + with the privileges of the process or a Denial of Service condition. +
+There is no known workaround at this time.
+All OpenOffice users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=app-office/openoffice-bin-4.1.3"
+
+
+ The Adobe Flash Player is a renderer for the SWF file format, which is + commonly used to provide interactive websites. +
+Multiple vulnerabilities have been discovered in Adobe Flash Player. + Please review the CVE identifiers referenced below for details. +
+A remote attacker could possibly execute arbitrary code with the + privileges of the process or bypass security restrictions. +
+There is no known workaround at this time.
+All Adobe Flash users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose
+ ">=www-plugins/adobe-flash-25.0.0.127"
+
+
+ PuTTY is a free implementation of Telnet and SSH for Windows and Unix + platforms, along with an xterm terminal emulator. +
+A heap-corrupting buffer overflow bug in the ssh_agent_channel_data + function of PuTTY was found. +
+A remote attacker, utilizing the SSH agent forwarding of an SSH server, + could execute arbitrary code with the privileges of the user running the + client or cause a Denial of Service condition. +
+There is no known workaround at this time.
+All PuTTY users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=net-misc/putty-0.68"
+
+
+