Red Hat: Updated gtkhtml packages fix vulnerability
Posted on: 09/16/2003 03:38 AM
Red Hat has released updated gtkhtml packages for Red Hat Linux
GtkHTML is the HTML rendering widget used by the Evolution mail reader. Read more
Versions of GtkHTML prior to 1.1.10 contain a bug when handling HTML messages. Alan Cox discovered that certain malformed messages could cause the Evolution mail component to crash due to a null pointer dereference in the GtkHTML library. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2003-0541 to this issue.
Users of Evolution are advised to upgrade to these erratum packages, which contain GtkHTML version 1.1.10 correcting this issue.