Security Bulletin 2006-06-29 2.0.3 fixes three security vulnerabilites that have been found through internal security audits. Although there are currently no known exploits, we urge all users of 2.0.x prior to 2.0.2 to upgrade to the new version or install their vendor’s patches accordingly. Patches for users of 1.1.5 will be available shortly.

The three vulnerabilities involve:
Java Applets, CVE-2006-2199
Macro, CVE-2006-2198; and
File Format, CVE-2006-3117

Leave a Reply