Marcelo Ricardo Leitner noticed that the current patch in DSA 932
(CVE-2005-3627) for kpdf, the PDF viewer for KDE, does not fix all
buffer overflows, still allowing an attacker to execute arbitrary
code.
The old stable distribution (woody) does not contain kpdf packages.
For the stable distribution (sarge) this problem has been fixed in
version 3.3.2-2sarge4.
The unstable distribution (sid) is not affected by this problem.
We recommend that you upgrade your kpdf package.
CPE | Name | Operator | Version |
---|---|---|---|
kdegraphics | eq | 4:3.3.2-2sarge1 | |
kdegraphics | eq | 4:3.3.2-2sarge2 | |
kdegraphics | eq | 4:3.3.2-2 | |
kdegraphics | eq | 4:3.3.2-2sarge3 |