High severity7.8NVD Advisory· Published Aug 29, 2008· Updated Apr 23, 2026
CVE-2008-3282
CVE-2008-3282
Description
Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in the memory allocator in OpenOffice.org (OOo) 2.4.1, on 64-bit platforms, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted document, related to a "numeric truncation error," a different vulnerability than CVE-2008-2152.
Affected products
3- cpe:2.3:a:apache:openoffice:2.4.1:*:*:*:*:*:x64:*
cpe:2.3:o:fedoraproject:fedora:8:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:fedoraproject:fedora:8:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:9:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
14- securitytracker.com/idnvdBroken LinkThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/30866nvdBroken LinkThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/44742nvdThird Party AdvisoryVDB Entry
- secunia.com/advisories/31640nvdBroken Link
- secunia.com/advisories/31646nvdBroken Link
- secunia.com/advisories/31778nvdBroken Link
- www.openoffice.org/issues/show_bug.cginvdIssue Tracking
- www.redhat.com/support/errata/RHSA-2008-0835.htmlnvdBroken Link
- www.vupen.com/english/advisories/2008/2449nvdBroken Link
- bugzilla.redhat.com/show_bug.cginvdIssue Tracking
- bugzilla.redhat.com/show_bug.cginvdIssue Tracking
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11345nvdBroken Link
- www.redhat.com/archives/fedora-package-announce/2008-September/msg00120.htmlnvdMailing List
- www.redhat.com/archives/fedora-package-announce/2008-September/msg00494.htmlnvdMailing List
News mentions
0No linked articles in our index yet.