Updated kdegraphics packages that resolve a security issue in kpdf are now
This update has been rated as having important security impact by the Red
Hat Security Response Team.
The kdegraphics packages contain applications for the K Desktop Environment
including kpdf, a pdf file viewer.
A heap based buffer overflow bug was discovered in kpdf. An attacker could
construct a carefully crafted PDF file that could cause kpdf to crash or
possibly execute arbitrary code when opened. The Common Vulnerabilities and
Exposures project assigned the name CVE-2006-0301 to this issue.
Users of kpdf should upgrade to these updated packages, which contain a
backported patch to resolve this issue.