DSA-2050-1 kdegraphics -- severalID: oval:org.secpod.oval:def:600137 | Date: (C)2011-01-28 (M)2024-01-02 |
Class: PATCH | Family: unix |
Several local vulnerabilities have been discovered in KPDF, a PDF viewer for KDE, which allow the execution of arbitrary code or denial of service if a user is tricked into opening a crafted PDF document. For the stable distribution , these problems have been fixed in version 4:3.5.9-3+lenny3. The unstable distribution no longer contains kpdf. It"s replacement, Okular, links against the poppler PDF library. We recommend that you upgrade your kdegraphics packages.