Apache OpenOffice has a dependency on expat software. Versions prior to 2.1.0 were subject to CVE-2013-0340 a "Billion Laughs" entity expansion denial of service attack and exploit via crafted XML files. ODF files consist of a set of XML files. All versions of Apache OpenOffice up to 4.1.10 are subject to this issue. expat in version 4.1.11 is patched.
Advisories
Source ID Title
EUVD EUVD EUVD-2021-27616 Apache OpenOffice has a dependency on expat software. Versions prior to 2.1.0 were subject to CVE-2013-0340 a "Billion Laughs" entity expansion denial of service attack and exploit via crafted XML files. ODF files consist of a set of XML files. All versions of Apache OpenOffice up to 4.1.10 are subject to this issue. expat in version 4.1.11 is patched.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published:

Updated: 2024-08-04T02:44:10.415Z

Reserved: 2021-09-02T00:00:00

Link: CVE-2021-40439

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-10-07T16:15:09.073

Modified: 2024-11-21T06:24:07.130

Link: CVE-2021-40439

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.