Synopsis: Important: kdegraphics security update
Issue date: 2007-07-30
CVE Names: CVE-2007-3387
Maurycy Prodeus discovered an integer overflow flaw in the processing
of PDF files. An attacker could create a malicious PDF file that would
cause kpdf to crash or potentially execute arbitrary code when opened.
(CVE-2007-3387)
SL 4.x
SRPMS:
kdegraphics-3.3.1-4.RHEL4.src.rpm
i386:
kdegraphics-3.3.1-4.RHEL4.i386.rpm
kdegraphics-devel-3.3.1-4.RHEL4.i386.rpm
x86_64:
kdegraphics-3.3.1-4.RHEL4.x86_64.rpm
kdegraphics-devel-3.3.1-4.RHEL4.x86_64.rpm
SL 5.x
SRPMS:
kdegraphics-3.5.4-2.el5.src.rpm
i386:
kdegraphics-3.5.4-2.el5.i386.rpm
kdegraphics-devel-3.5.4-2.el5.i386.rpm
x86_64:
kdegraphics-3.5.4-2.el5.x86_64.rpm
kdegraphics-devel-3.5.4-2.el5.i386.rpm
kdegraphics-devel-3.5.4-2.el5.x86_64.rpm
-Connie Sieh
-Troy Dawson