9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
Alin Rad Pop discovered a buffer overflow in kpdf, which could allow
the execution of arbitrary code if a malformed PDF file is displayed.
The old stable distribution (sarge) will be fixed later.
For the stable distribution (etch), this problem has been fixed in
version 4:3.5.5-3etch2. Builds for arm and sparc are not yet available.
We recommend that you upgrade your kdegraphics packages.
CPE | Name | Operator | Version |
---|---|---|---|
kdegraphics | eq | 4:3.5.5-3etch1 | |
kdegraphics | eq | 4:3.5.5-3 |