The OLE preview generation in Apache OpenOffice before 4.1.1 and OpenOffice.org (OOo) might allow remote attackers to embed arbitrary data into documents via crafted OLE objects.
http://lists.fedoraproject.org/pipermail/package-announce/2014-September/137657.html
http://rhn.redhat.com/errata/RHSA-2015-0377.html