Mandriva Linux Security Advisory : netpbm (MDVSA-2010:039)
High Nessus Plugin ID 44650
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionA vulnerability have been discovered and corrected in netpbm :
Stack-based buffer overflow in converter/ppm/xpmtoppm.c in netpbm before 10.47.07 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an XPM image file that contains a crafted header field associated with a large color index value (CVE-2009-4274).
Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers.
The updated packages have been patched to correct this issue.
SolutionUpdate the affected packages.