Mandrake Linux Security Advisory : evince (MDKSA-2006:229)
Medium Nessus Plugin ID 24612
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionStack-based buffer overflow in ps.c for evince allows user-assisted attackers to execute arbitrary code via a PostScript (PS) file with certain headers that contain long comments, as demonstrated using the DocumentMedia header.
Packages have been patched to correct this issue.
SolutionUpdate the affected evince package.