Fedora Core 1: FEDORA-2004-133 Critical: kdepim Buffer Overflow

fedora

May 25, 2004

An attacker could construct a VCF file so that when it was opened by a victim it would execute arbitrary commands.

Summary

A PIM (Personal Information Manager) for KDE.

Update Information:

The KDE team found a buffer overflow in the file information reader of VCF files. An attacker could construct a VCF file so that when it was opened by a victim it would execute arbitrary commands. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2003-0988 to this issue.

* Thu Dec 18 2003 Than Ngo <than@redhat.com> 6:3.1.4-2

- added patch from KDE stable branch to fix buffer overflow in vcf

This update can be downloaded from:

20a4f053aba0eccfd4e22b816714e27a SRPMS/kdepim-3.1.4-2.src.rpm 216304bb47999422716bc39b1b992d5e i386/kdepim-3.1.4-2.i386.rpm a1b17e1958b623c414751bfb0044bf37 i386/debug/kdepim-debuginfo-3.1.4-2.i386.rpm e750576e7c01bdc9242fc31299cd07b4 i386/kdepim-devel-3.1.4-2.i386.rpm 1c5694e3993b93e5a242a4acb725e18c x86_64/kdepim-3.1.4-2.x86_64.rpm f7fa93f04c386d21cbdd380c9606766d x86_64/debug/kdepim-debuginfo-3.1.4-2.x86_64.rpm 2024ae0a406a8aaf39e00a5997cc76f0 x86_64/kdepim-devel-3.1.4-2.x86_64.rpm

This update can also ...

Read the Full Advisory

Topics Covered

security advisory buffer overflow critical Fedora Core kdepim arbitrary execution

Change Log

References

Fedora Update Notification FEDORA-2004-133 2004-05-19
Product : Fedora Core 1 Name : kdepim Version : 3.1.4 Release : 2 Summary : PIM (Personal Information Manager) for KDE Description : A PIM (Personal Information Manager) for KDE.

Update Instructions

Severity

critical

Lowest

Low

Medium

High

Critical

Product: Fedora Core 1

Name: kdepim

Version: 3.1.4

Release: 2

Summary: PIM (Personal Information Manager) for KDE

Topics Covered

security advisory buffer overflow critical Fedora Core kdepim arbitrary execution

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Fedora Core 1: FEDORA-2004-133 Critical: kdepim Buffer Overflow

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Fedora Core 1: FEDORA-2004-133 Critical: kdepim Buffer Overflow

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!