Mandrake Linux Security Advisory : kdegraphics (MDKSA-2006:031)
High Nessus Plugin ID 20852
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionHeap-based buffer overflow in Splash.cc in xpdf allows attackers to cause a denial of service and possibly execute arbitrary code via crafted splash images that produce certain values that exceed the width or height of the associated bitmap.
Kdegraphics-kpdf uses a copy of the xpdf code and as such has the same issues.
The updated packages have been patched to correct this issue.
SolutionUpdate the affected packages.