Mandriva Linux Security Advisory – Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in OpenOffice.org (OOo) 2.0 through 2.4 allows remote attackers to execute arbitrary code via a crafted file that triggers a heap-based buffer overflow. The updated packages have been patched to fix the issue.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/68067/MDVSA-2008-138.txt
Source: https://packetstormsecurity.com/files/68067/Mandriva-Linux-Security-Advisory-2008-138.html