DSA-2050-1 kdegraphics -- several
|ID: oval:org.secpod.oval:def:600137||Date: (C)2011-01-28 (M)2018-06-20|
|Class: PATCH||Family: unix|
Several local vulnerabilities have been discovered in KPDF, a PDF viewer for KDE, which allow the execution of arbitrary code or denial of service if a user is tricked into opening a crafted PDF document. For the stable distribution , these problems have been fixed in version 4:3.5.9-3+lenny3. The unstable distribution no longer contains kpdf. It"s replacement, Okular, links against the poppler PDF library. We recommend that you upgrade your kdegraphics packages.