Real, KDE Patch Security Flaws

KingFishKingFish
edited October 2004 in Science & Tech
RealNetworks Inc. and KDE eV on Tuesday both released patches for their desktop software, fixing serious security holes that could allow an attacker to take over a user's system.
The update to KOffice, the productivity suite that is part of the K Desktop Environment, patched flaws in a library called xpdf, which handles PDF files. The integer overflow bugs allow an attacker to craft a document using Adobe's PDF that executes malicious code when viewed by an application relying on xpdf. In the case of KOffice, users could have been attacked via KWord's PDF import filter. Version 1.3.4, available from KDE, fixes the bug, project maintainers said.
Source: eWeek
Sign In or Register to comment.