- --------------------------------------------------------------------------
Debian-Edu/Skolelinux Security Advisory DESA 2004-017
http://www.skolelinux.no/security/ Morten Werner Olsen
September 16, 2004 debian-edu-security@lists.alioth.debian.org
- --------------------------------------------------------------------------
Package : gdk-pixbuf
Vulnerability : several
Problem-Type : remote
Need reboot : no
Debian-Edu-specific : no
CVE ID : CAN-2004-0753 CAN-2004-0782 CAN-2004-0788
DSA ID : DSA-546-1
Chris Evans discovered several problems in gdk-pixbuf, the GdkPixBuf
library used in Gtk. It is possible for an attacker to execute
arbitrary code on the victims machine. Gdk-pixbuf for Gtk+1.2 is an
external package. For Gtk+2.0 it's part of the main gtk package.
We recommend that you update your gdk-pixbuf packages.
Upgrade Instructions
- --------------------
Make sure the line
deb http://security.debian.org/ stable/updates main contrib non-free
is present in your /etc/apt/sources.list and run 'apt-get update' to
update your package lists. Then run
'apt-get install libgdk-pixbuf2 libgdk-pixbuf-gnome2'
to upgrade your gdk-pixbuf packages.
- --------------------------------------------------------------------------
Mailing list: bruker@skolelinux.no, debian-edu@lists.debian.org,
linuxiskolen@skolelinux.no, user@skolelinux.de
Package info: `apt-cache show <pkg>'
Attachment:
signature.asc
Description: Digital signature