The kdegraphics packages contain applications for the K Desktop
Environment, including KPDF, a viewer for Portable Document Format (PDF)
files.
Multiple integer overflow flaws were found in KPDF. An attacker could
create a malicious PDF file that would cause KPDF to crash or, potentially,
execute arbitrary code when opened. (CVE-2009-0791, CVE-2009-1188,
CVE-2009-3604, CVE-2009-3608, CVE-2009-3609)
Red Hat would like to thank Adam Zabrocki for reporting the CVE-2009-3604
issue, and Chris Rohlf for reporting the CVE-2009-3608 issue.
Users are advised to upgrade to these updated packages, which contain a
backported patch to resolve these issues.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 4 | s390 | kdegraphics-devel | < 3.3.1-15.el4_8.2 | kdegraphics-devel-3.3.1-15.el4_8.2.s390.rpm |
RedHat | 4 | ia64 | kdegraphics-devel | < 3.3.1-15.el4_8.2 | kdegraphics-devel-3.3.1-15.el4_8.2.ia64.rpm |
RedHat | 4 | s390x | kdegraphics | < 3.3.1-15.el4_8.2 | kdegraphics-3.3.1-15.el4_8.2.s390x.rpm |
RedHat | 4 | ppc | kdegraphics | < 3.3.1-15.el4_8.2 | kdegraphics-3.3.1-15.el4_8.2.ppc.rpm |
RedHat | 4 | ppc | kdegraphics-devel | < 3.3.1-15.el4_8.2 | kdegraphics-devel-3.3.1-15.el4_8.2.ppc.rpm |
RedHat | 4 | s390 | kdegraphics | < 3.3.1-15.el4_8.2 | kdegraphics-3.3.1-15.el4_8.2.s390.rpm |
RedHat | 4 | src | kdegraphics | < 3.3.1-15.el4_8.2 | kdegraphics-3.3.1-15.el4_8.2.src.rpm |
RedHat | 4 | x86_64 | kdegraphics-devel | < 3.3.1-15.el4_8.2 | kdegraphics-devel-3.3.1-15.el4_8.2.x86_64.rpm |
RedHat | 4 | ia64 | kdegraphics | < 3.3.1-15.el4_8.2 | kdegraphics-3.3.1-15.el4_8.2.ia64.rpm |
RedHat | 4 | s390x | kdegraphics-devel | < 3.3.1-15.el4_8.2 | kdegraphics-devel-3.3.1-15.el4_8.2.s390x.rpm |