Bug#287080: kdegraphics: CAN-2004-1125: kpdf buffer overflow vulnerability
Package: kpdf
Severity: grave
Tags: sarge, security
CAN-2004-1125 is about a buffer overflow vulnerability in xpdf. As
kpdf contains a copy, it is also affected (see the KDE Security
Advisory [1]).
[1] http://www.kde.org/info/security/advisory-20041223-1.txt
This issue has been fixed in sid with the upload of kdegraphics
4:3.3.1-2. An upload of kdelibs 4:3.3.2-0pre2 to experimental is
planned, and I'm creating this bug report so that the vulnerability in
sarge becomes documented.
kdegraphics >= 4:3.3.1-2 is scheduled to be included in sarge "soon".
--
Adeodato Simó
EM: asp16 [ykwim] alu.ua.es | PK: DA6AE621
Listening to: Oasis - Champagne Supernova
Old men are fond of giving good advice to console themselves for their
inability to set a bad example.
-- La Rochefoucauld, "Maxims"
Reply to: