Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Fedora Local Security Checks
Title:Fedora Core 2 FEDORA-2004-357 (kdegraphics)

The remote host is missing an update to kdegraphics
announced via advisory FEDORA-2004-357.

A problem with PDF handling was discovered by Chris Evans, and has
been fixed. The Common Vulnerabilities and Exposures project
( has assigned the name CVE-2004-0888 to this issue.

A number of buffer overflow bugs that affect libtiff have
been found. The kfax application contains a copy of the libtiff code used
for parsing TIFF files and is therefore affected by these bugs. An attacker
who has the ability to trick a user into opening a malicious TIFF file
could cause kfax to crash or possibly execute arbitrary code. The Common
Vulnerabilities and Exposures project ( has assigned the name
CVE-2004-0803 to this issue.

This update can be downloaded from:

a104c3550141c3f0e7f5245e321f717d SRPMS/kdegraphics-3.2.2-1.1.src.rpm
b9c227361354cebbcae97df082e60f3c x86_64/kdegraphics-3.2.2-1.1.x86_64.rpm
bd4a9746410bae4f7c71bc4d3292777c x86_64/kdegraphics-devel-3.2.2-1.1.x86_64.rpm
247556c77e621e4fd67760f3ab818a13 x86_64/debug/kdegraphics-debuginfo-3.2.2-1.1.x86_64.rpm
1cc02d811b6a96d4382fe15e2b65a4cc i386/kdegraphics-3.2.2-1.1.i386.rpm
6f72f96c16132cac97501150bf6ddad7 i386/kdegraphics-devel-3.2.2-1.1.i386.rpm
1d7e317cb11d3ece70178be6f7f97215 i386/debug/kdegraphics-debuginfo-3.2.2-1.1.i386.rpm

This update can also be installed with the Update Agent
you can
launch the Update Agent with the 'up2date' command.

Solution: Apply the appropriate updates.

Risk factor : Critical

CVSS Score:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2004-0888
BugTraq ID: 11501
Conectiva Linux advisory: CLA-2004:886
Debian Security Information: DSA-573 (Google Search)
Debian Security Information: DSA-581 (Google Search)
Debian Security Information: DSA-599 (Google Search)
SuSE Security Announcement: SUSE-SA:2004:039 (Google Search)
XForce ISS Database: xpdf-pdf-bo(17818)
Common Vulnerability Exposure (CVE) ID: CVE-2004-0803
BugTraq ID: 11406
Bugtraq: 20041013 CESA-2004-006: libtiff (Google Search)
CERT/CC vulnerability note: VU#948752
Conectiva Linux advisory: CLA-2004:888
Debian Security Information: DSA-567 (Google Search)
SuSE Security Announcement: SUSE-SA:2004:038 (Google Search)
XForce ISS Database: libtiff-library-decoding-bo(17703)
Common Vulnerability Exposure (CVE) ID: CVE-2004-0886
CERT/CC vulnerability note: VU#687568
Computer Incident Advisory Center Bulletin: P-015
XForce ISS Database: libtiff-bo(17715)
CopyrightCopyright (c) 2005 E-Soft Inc.

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2022 E-Soft Inc. All rights reserved.