Mandrake Linux Security Advisory : kdegraphics (MDKSA-2002:071)
High Nessus Plugin ID 13971
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionA vulnerability exists in KGhostview, part of the kdegraphics package.
It includes a DSC 3.0 parser from GSview then is vulnerable to a buffer overflow while parsing a specially crafted .ps file. It also contains code from gv which is vulnerable to a similar buffer overflow triggered by malformed PostScript and PDF files. This has been fixed in KDE 3.0.4 and patches have been applied to correct these packages.
SolutionUpdate the affected kdegraphics, kdegraphics-devel and / or kdegraphics-static-devel packages.