Mandrake Security Advisory MDVSA-2009:006 (

The remote host is missing an update to announced via advisory MDVSA-2009:006.
To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.
Heap-based overflow on functions to manipulate WMF and EMF files in documments enables remote attackers to execute arbitrary code on documments holding certain crafted either WMF or EMF files (CVE-2008-2237) (CVE-2008-2238). This update provide the fix for these security issues and further package has been updated as it depends on packages. Affected: 2008.0, 2008.1