Family: Red Hat Local Security Checks --> Category: infos
RHSA-2006-0206: kdegraphics Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the kdegraphics packages
Detailed Explanation for this Vulnerability Test
Updated kdegraphics packages that resolve a security issue in kpdf are now
This update has been rated as having important security impact by the Red
Hat Security Response Team.
The kdegraphics packages contain applications for the K Desktop Environment
including kpdf, a pdf file viewer.
A heap based buffer overflow bug was discovered in kpdf. A possible hacker could
construct a carefully crafted PDF file that could cause kpdf to crash or
possibly execute arbitrary code when opened. The Common Vulnerabilities and
Exposures project assigned the name CVE-2006-0301 to this issue.
Users of kpdf should upgrade to these updated packages, which contain a
backported patch to resolve this issue.
Solution : http://rhn.redhat.com/errata/RHSA-2006-0206.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.