Advisories » MGASA-2020-0145

Updated okular packages fix security vulnerability

Publication date: 18 Mar 2020
Modification date: 18 Mar 2020
Type: security
Affected Mageia releases : 7
CVE: CVE-2020-9359

Description

Updated okular packages fix security vulnerability:

Okular can be tricked into executing local binaries via specially crafted
PDF files. This binary execution can require almost no user interaction.
No parameters can be passed to those local binaries (CVE-2020-9359).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=26342
• https://kde.org/info/security/advisory-20200312-1.txt
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9359

SRPMS

7/core

• okular-19.04.0-1.1.mga7