Red Hat: Updated gtkhtml packages fix vulnerability
Posted on: 09/16/2003 03:38 AM

Red Hat has released updated gtkhtml packages for Red Hat Linux

GtkHTML is the HTML rendering widget used by the Evolution mail reader.

Versions of GtkHTML prior to 1.1.10 contain a bug when handling HTML messages. Alan Cox discovered that certain malformed messages could cause the Evolution mail component to crash due to a null pointer dereference in the GtkHTML library. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2003-0541 to this issue.

Users of Evolution are advised to upgrade to these erratum packages, which contain GtkHTML version 1.1.10 correcting this issue.

Read more


Printed from Linux Compatible (http://www.linuxcompatible.org/news/story/red_hat_updated_gtkhtml_packages_fix_vulnerability.html)