Mandrake Linux Security Advisory : kdegraphics (MDKSA-2006:227)
Medium Nessus Plugin ID 24610
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionStack overflow in the KFILE JPEG (kfile_jpeg) plugin in kdegraphics3, as used by konqueror, digikam, and other KDE image browsers, allows remote attackers to cause a denial of service (stack consumption) via a crafted EXIF section in a JPEG file, which results in an infinite recursion.
The updated packages have been patched to correct this issue.
SolutionUpdate the affected packages.