News

=========================================================== Ubuntu Security Notice USN-114-1 May 03, 2005 kdelibs vulnerability CAN-2005-1046 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 5.04 (Hoary Hedgehog) The following packages are affected: kdelibs The problem can be corrected by upgrading the affected package to version 3.4.0-0ubuntu3.1. In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: Bruno Rohee discovered a buffer overflow in the PCX decoder of kimgio. If an attacker tricked a user into loading a malicious PCX image with a KDE application, he could exploit this to execute arbitrary code with the privileges of the user opening the image.