openSUSE 10 Security Update : kdegraphics3 (kdegraphics3-2299)

high Nessus Plugin ID 27286

Synopsis

The remote openSUSE host is missing a security update.

Description

The KFILE JPEG plugin that is responsible for displaying meta-data of JPEG files was affected by some old common vulnerabilities in EXIF handling.

A JPEG file could be prepared with an EXIF section with endless recursion that would overflow the stack and cause the plugin and so the image browser (konqueror, digikam or other kfile users) to crash.

Solution

Update the affected kdegraphics3 package.

Plugin Details

Severity: High

ID: 27286

File Name: suse_kdegraphics3-2299.nasl

Version: 1.13

Type: local

Agent: unix

Published: 10/17/2007

Updated: 1/14/2021

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Nessus

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:kdegraphics3, cpe:/o:novell:opensuse:10.1

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 11/23/2006