New Search

RHSA-2009:0431 -- kdegraphics security update (Important)

oval:org.mitre.oval:def:29193

Updated kdegraphics packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kdegraphics packages contain applications for the K Desktop Environment including KPDF a viewer for Portable Document Format (PDF) files. Multiple integer overflow flaws were found in KPDF's JBIG2 decoder. An attacker could create a malicious PDF file that would cause KPDF to crash or potentially execute arbitrary code when opened. (CVE-2009-0147 CVE-2009-1179)

Family:
unix
Status:
ACCEPTED
Platform(s):
  • CentOS Linux 5
  • Red Hat Enterprise Linux 4
  • Red Hat Enterprise Linux 5
Class:
patch
Reference(s):
  • RHSA-2009:0431
  • CESA-2009:0431-CentOS 5
  • CVE-2009-0146
  • CVE-2009-0147
  • CVE-2009-0166
  • CVE-2009-0195
  • CVE-2009-0799
  • CVE-2009-0800
  • CVE-2009-1179
  • CVE-2009-1180
  • CVE-2009-1181
  • CVE-2009-1182
  • CVE-2009-1183
Product(s):
  • kdegraphics