|
Family: Ubuntu Local Security Checks --> Category: infos
USN193-1 : dia vulnerability Vulnerability Scan
Vulnerability Scan Summary dia vulnerability
Detailed Explanation for this Vulnerability Test
Synopsis :
These remote packages are missing security patches :
- dia
- dia-common
- dia-gnome
- dia-libs
Description :
Joxean Koret discovered that the SVG import test did not properly
sanitise data read from an SVG file. By tricking an user into opening
a specially crafted SVG file, a possible hacker could exploit this to
execute arbitrary code with the rights of the user.
Solution :
Upgrade to :
- dia-0.94.0-5ubuntu1.1 (Ubuntu 5.04)
- dia-common-0.94.0-5ubuntu1.1 (Ubuntu 5.04)
- dia-gnome-0.94.0-5ubuntu1.1 (Ubuntu 5.04)
- dia-libs-0.94.0-5ubuntu1.1 (Ubuntu 5.04)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|