14 DAY TRIAL // OpenOffice is one of those programs that a lot of people like and use, so when you disclose a vulnerability like this, it's best to let everyone know about it. It is important that people update the software in order to patch up any vulnerability. If you want to see what versions are affected by this (so you can tell if yours is flawed) click on this link.
The program suffers from TIFF file parser multiple integer overflow vulnerabilities. These are pretty severe, and here's why: if a hacker should target them, and properly exploit them too, then he could execute arbitrary code within the context of the affected application. I got that info from SecurityFocus. They've also said that failed exploit attempts will lead to a denial of service. That's why I said it was severe - if the hacker gets there, he either executes the code, or you get a DoS, so anyway you put it, it's still bad.
As the same site explains, these vulnerabilities are caused by the fact that the application fails to bound-check user-supplied data before copying it into an insufficiently sized buffer. But don't worry, things don't just happen like that - the vulnerabilities can only be exploited if the users open malicious TIFF files. Anyway, there's no need to panic, al these vulnerabilities go away in version 2.3 so just get that one and everything will be fine.
In case you've never heard about OpenOffice, though I doubt it, it's a free and open source software office suit. The keyword here is "free". Sure, it's not as good as similar applications are, such as Microsoft Office for instance, but it's a really great tool. It works on Windows, Mac OS X, Solaris and others. The greatest part about it is the fact that it supports a standard (called OpenDocument) for data interchange.