USN-823-1: KDE-Graphics vulnerabilities

24 August 2009

KDE-Graphics vulnerabilities

Releases

Packages

Details

It was discovered that KDE-Graphics did not properly handle certain
malformed SVG images. If a user were tricked into opening a specially
crafted SVG image, an attacker could cause a denial of service or possibly
execute arbitrary code with the privileges of the user invoking the
program.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 8.04

After a standard system upgrade you need to restart your session to effect
the necessary changes.

Related notices

  • USN-822-1: kde4libs, kdelibs5, kdelibs4c2a, kdelibs
  • USN-857-1: qt4-x11, libqt4-webkit
  • USN-836-1: webkit, libwebkit-dev, libwebkit-1.0-1-dbg, libwebkit-1.0-1