RedHat Update For Kdegraphics RHSA-2008:0238-01 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

The kdegraphics packages contain applications for the K Desktop Environment, including kpdf, a PDF file viewer. Kees Cook discovered a flaw in the way kpdf displayed malformed fonts embedded in PDF files. An attacker could create a malicious PDF file that would cause kpdf to crash, or, potentially, execute arbitrary code when opened. (CVE-2008-1693) All kdegraphics users are advised to upgrade to these updated packages, which contain backported patches to resolve this issue.

Affected

kdegraphics on Red Hat Enterprise Linux AS version 4, Red Hat Enterprise Linux ES version 4, Red Hat Enterprise Linux WS version 4

References

https://www.redhat.com/archives/rhsa-announce/2008-April/msg00020.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-1693
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

RedHat Security Advisory RHSA-2009:0225
RedHat Security Advisory RHSA-2009:1082
RedHat Security Advisory RHSA-2009:1164
RedHat Security Advisory RHSA-2009:1642
RedHat Update for 389-ds-base RHSA-2014:0292-01

RedHat Update for kdegraphics RHSA-2008:0238-01

Take action and discover your vulnerabilities