| Revision Date: | 2005-05-17 | Version: | 502 |
| Title: | RHSA-2005:393: kdelibs security update (Important) |
| Description: | KDE is a graphical desktop environment for the X Window System. Konqueror is the file manager for the K Desktop Environment.
A source code audit performed by the KDE security team discovered several vulnerabilities in the PCX and other image file format readers.
A buffer overflow was found in the kimgio library for KDE 3.4.0. An attacker could create a carefully crafted PCX image in such a way that it would cause kimgio to execute arbitrary code when processing the image. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-1046 to this issue.
All users of kdelibs should upgrade to these updated packages, which contain a backported security patch to correct these issues.
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | CVE-2005-1046
RHSA-2005:393-01
|
| Platform(s): | Red Hat Enterprise Linux 4
| Product(s): | |
| Definition Synopsis |
| Red Hat Enterprise Linux 4 is installed AND Package Information
kdelibs is earlier than 6:3.3.1-3.10
AND kdelibs is signed with Red Hat master key
OR
kdelibs-devel is earlier than 6:3.3.1-3.10
AND kdelibs-devel is signed with Red Hat master key
|