[kpdf] multiple xpdf based vulnerabilities
Bug #160948 reported by
disabled.user
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
kdegraphics (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
koffice (Ubuntu) |
Fix Released
|
Undecided
|
Jamie Strandboge |
Bug Description
Binary package hint: kpdf
References:
http://
"Systems affected:
KDE 3.2.0 up to including KDE 3.5.8.
All KOffice 1.x releases.
Overview:
kpdf, the KDE pdf viewer, shares code with xpdf. xpdf contains
multiple vulnerabilities that can crash kpdf or possibly
execute arbitrary code. The issues were reported by Secunia
Research. Similiar xpdf based code also exists in kword
pdf import filters of KOffice 1.x."
See also Bug #160944.
From Bug #129940 I remember that Ubuntu's kpdf/kdegraphic
To post a comment you must log in.
Thanks for this report! This is being worked on and will be released shortly.