Users of okular please be advised of a buffer-overflow vulnerability that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)
Amplify’d from www.criticalwatch.com
USN-979-1: [USN-979-1] okular buffer-overflow vulnerability
kdegraphics vulnerability
Details follow:
Stefan Cornelius of Secunia Research discovered a boundary error during
RLE decompression in the "TranscribePalmImageToJPEG()" function in
generators/plucker/inplug/image.cpp of okular when processing images
embedded in PDB files, which can be exploited to cause a heap-based
buffer overflow. (CVE-2010-2575)
Read more at www.criticalwatch.com
See this Amp at http://bit.ly/bxiYHO
No comments:
Post a Comment