Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Gentoo: GLSA-200704-10 normal: Inkscape format string threats

gentoo
Calendar Grey April 16, 2007
Dist Gentoo Esm H88
Critical Inkscape weaknesses necessitate prompt user intervention; update now to mitigate threats posed by moderate severity concerns.
Two format string vulnerabilities have been discovered in Inkscape, allowing for user-assisted execution of arbitrary code.

Summary

Gentoo Linux Security Advisory GLSA 200704-10 https://security.gentoo.org/ Severity: Normal Title: Inkscape: Two format string vulnerabilities Date: April 16, 2007 Bugs: #171799 ID: 200704-10

Synopsis ======= Two format string vulnerabilities have been discovered in Inkscape, allowing for user-assisted execution of arbitrary code.
Background ========= Inkscape is a vector graphics editor, using Scalable Vector Graphics (SVG) Format.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-gfx/inkscape < 0.45.1 >= 0.45.1
========== Kees Cook has discovered two vulnerabilities in Inkscape. The application does not properly handle format string specifiers in some...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory format string arbitrary code execution normal severity Inkscape

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory format string arbitrary code execution normal severity Inkscape

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here