CentOS Update For Kdegraphics CESA-2008:0238 Centos4 X86_64 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

The kdegraphics packages contain applications for the K Desktop Environment, including kpdf, a PDF file viewer. Kees Cook discovered a flaw in the way kpdf displayed malformed fonts embedded in PDF files. An attacker could create a malicious PDF file that would cause kpdf to crash, or, potentially, execute arbitrary code when opened. (CVE-2008-1693) All kdegraphics users are advised to upgrade to these updated packages, which contain backported patches to resolve this issue.

Affected

kdegraphics on CentOS 4

References

http://lists.centos.org/pipermail/centos-announce/2008-April/014844.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-1693

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

CentOS Update for apache CESA-2008:0004-01 centos2 i386
CentOS Update for apr CESA-2011:0844 centos4 i386
CentOS Update for 389-ds-base CESA-2013:1119 centos6
CentOS Security Advisory CESA-2009:0308 (cups)
CentOS Security Advisory CESA-2009:1536 (pidgin)

CentOS Update for kdegraphics CESA-2008:0238 centos4 x86_64

Take action and discover your vulnerabilities