Ubuntu USN-823-1 (kdegraphics) Network Vulnerability

Summary

The remote host is missing an update to kdegraphics announced via advisory USN-823-1.

Solution

The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.04 LTS: ksvg 4:3.5.10-0ubuntu1~hardy1.1 After a standard system upgrade you need to restart your session to effect the necessary changes. https://secure1.securityspace.com/smysecure/catid.html?in=USN-823-1

Insight

It was discovered that KDE-Graphics did not properly handle certain malformed SVG images. If a user were tricked into opening a specially crafted SVG image, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program.

Severity

Classification

CVE CVE-2009-0945, CVE-2009-1709

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Ubuntu Update for ffmpeg USN-1320-1
Ubuntu Update for bind9 USN-1910-1
Ubuntu Update for dhcp3 vulnerability USN-1108-1
Ubuntu Update for coreutils USN-2473-1
Ubuntu Update for bind9 vulnerabilities USN-418-1

Take action and discover your vulnerabilities