KDE: RealNetworks Critical Patches for KOffice Integer Overflow

RealNetworks Inc. and KDE eV on Tuesday both released patches for their desktop software, fixing serious security holes that could allow an attacker to take over a user's system. . . . RealNetworks Inc. and KDE eV on Tuesday both released patches for their desktop software, fixing serious security holes that could allow an attacker to take over a user's system.

The update to KOffice, the productivity suite that is part of the K Desktop Environment, patched flaws in a library called xpdf, which handles PDF files. The integer overflow bugs allow an attacker to craft a document using Adobe's PDF that executes malicious code when viewed by an application relying on xpdf.

The link for this article located at Matthew Broersma is no longer available.