Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Red Hat Local Security Checks >> RHSA-2006-0720: arts


Vulnerability Assessment Details

RHSA-2006-0720: arts

Vulnerability Assessment Summary
Check for the version of the arts packages

Detailed Explanation for this Vulnerability Assessment


Updated kdelibs packages that correct an integer overflow flaw are now
available.

This update has been rated as having critical security impact by the Red
Hat Security Response Team.

The kdelibs package provides libraries for the K Desktop Environment (KDE).
Qt is a GUI software toolkit for the X Window System.

An integer overflow flaw was found in the way Qt handled pixmap images.
The KDE khtml library uses Qt in such a way that untrusted parameters could
be passed to Qt, triggering the overflow. A possible hacker could for example
create a malicious web page that when viewed by a victim in the Konqueror
browser would cause Konqueror to crash or possibly execute arbitrary code
with the rights of the victim. (CVE-2006-4811)

Users of KDE should upgrade to these updated packages, which contain a
backported patch to correct this issue.




Solution : http://rhn.redhat.com/errata/RHSA-2006-0720.html
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2006 Tenable Network Security

Cables, Connectors

Master Diskette II Atari 810 Disc Operating System
$19.99
Master Diskette II Atari 810 Disc Operating System pictureAtari Jaguar Console Box But with Scuffs. Empty Collectors, Check Pictures
$60.0
Atari Jaguar Console Box But with Scuffs. Empty Collectors, Check Pictures pictureDUNGEONS AND DRAGONS ONLINE STORMREACH BY ATARI 2006 PC Interactive Game 4 CDs
$7.99
DUNGEONS AND DRAGONS ONLINE STORMREACH BY ATARI 2006 PC Interactive Game 4 CDs pictureAtari C010745
$3.75
Atari C010745 picture


Discussions

No Discussions have been posted on this vulnerability.