FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2006-4811

This CVE name corresponds to:

Entered Topic
2006-10-22 kdelibs -- integer overflow in khtml

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2006-4811 at cve.mitre.org

Details

Type Candidate
Name CVE-2006-4811
Phase Assigned(20060915)

Description

Integer overflow in Qt 3.3 before 3.3.7, 4.1 before 4.1.5, and 4.2 before 4.2.1, as used in the KDE khtml library, kdelibs 3.1.3, and possibly other packages, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted pixmap image.

References

Source Reference
BUGTRAQ 20061018 rPSA-2006-0195-1 kdelibs
CONFIRM http://www.trolltech.com/company/newsroom/announcements/press.2006-10-19.5434451733
CONFIRM https://issues.rpath.com/browse/RPL-723
DEBIAN DSA-1200
GENTOO GLSA-200611-02
GENTOO GLSA-200703-06
MANDRIVA MDKSA-2006:186
MANDRIVA MDKSA-2006:187
REDHAT RHSA-2006:0720
CONFIRM http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=210742
REDHAT RHSA-2006:0725
SGI 20061002-01-P
SGI 20061101-01-P
SLACKWARE SSA:2006-298-01
SUSE SUSE-SA:2006:063
UBUNTU USN-368-1
BID 20599
OVAL oval:org.mitre.oval:def:10218
VUPEN ADV-2006-4099
SECTRACK 1017084
SECUNIA 22479
SECUNIA 22485
SECUNIA 22492
SECUNIA 22380
SECUNIA 22520
SECUNIA 22397
SECUNIA 22579
SECUNIA 22589
SECUNIA 22645
SECUNIA 22586
SECUNIA 22738
SECUNIA 22890
SECUNIA 22929
SECUNIA 24347

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.