Mandriva Linux Security Advisory : libdigidoc (MDVSA-2013:225)
Medium Nessus Plugin ID 69549
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionUpdated libdigidoc packages fix security vulnerability :
Fixed one critical bug in the DDOC parsing routines. By persuading a victim to open a specially crafted DDOC file, a remote attacker could exploit this vulnerability to overwrite arbitrary files on the system with the privileges of the victim (CVE-2013-5648).
SolutionUpdate the affected lib64digidoc-devel and / or lib64digidoc2 packages.