- -------------------------------------------------------------------------- Debian-Edu/Skolelinux Security Advisory DESA 2004-017 http://www.skolelinux.no/security/ Morten Werner Olsen September 16, 2004 debian-edu-security@lists.alioth.debian.org - -------------------------------------------------------------------------- Package : gdk-pixbuf Vulnerability : several Problem-Type : remote Need reboot : no Debian-Edu-specific : no CVE ID : CAN-2004-0753 CAN-2004-0782 CAN-2004-0788 DSA ID : DSA-546-1 Chris Evans discovered several problems in gdk-pixbuf, the GdkPixBuf library used in Gtk. It is possible for an attacker to execute arbitrary code on the victims machine. Gdk-pixbuf for Gtk+1.2 is an external package. For Gtk+2.0 it's part of the main gtk package. We recommend that you update your gdk-pixbuf packages. Upgrade Instructions - -------------------- Make sure the line deb http://security.debian.org/ stable/updates main contrib non-free is present in your /etc/apt/sources.list and run 'apt-get update' to update your package lists. Then run 'apt-get install libgdk-pixbuf2 libgdk-pixbuf-gnome2' to upgrade your gdk-pixbuf packages. - -------------------------------------------------------------------------- Mailing list: bruker@skolelinux.no, debian-edu@lists.debian.org, linuxiskolen@skolelinux.no, user@skolelinux.de Package info: `apt-cache show <pkg>'
Attachment:
signature.asc
Description: Digital signature