Apache OpenOffice has a dependency on expat software. Versions prior to 2.1.0 were subject to CVE-2013-0340 a "Billion Laughs" entity expansion denial of service attack and exploit via crafted XML files. ODF files consist of a set of XML files. All versions of Apache OpenOffice up to 4.1.10 are subject to this issue. expat in version 4.1.11 is patched.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apache
Published: 2021-10-07T15:50:12
Updated: 2024-08-04T02:44:10.415Z
Reserved: 2021-09-02T00:00:00
Link: CVE-2021-40439
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-10-07T16:15:09.073
Modified: 2023-11-07T03:38:35.240
Link: CVE-2021-40439
Redhat
No data.