Family: Debian Local Security Checks --> Category: infos
[DSA1214] DSA-1214-2 gv Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
The original update provided in DSA 1214-1 was insufficient
corrects this. For reference please find the original advisory text below:
Renaud Lifchitz discovered that gv, the PostScript and PDF viewer for X,
performs insufficient boundary checks in the Postscript parsing code,
which allows the execution of arbitrary code through a buffer overflow.
For the stable distribution (sarge) this problem has been fixed in
For the upcoming stable distribution (etch) this problem has been
fixed in version 3.6.2-2.
For the unstable distribution (sid) this problem has been fixed in
We recommend that you upgrade your gv package.
Solution : http://www.debian.org/security/2006/dsa-1214
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.