About Ubuntu

=========================================================== Ubuntu Security Notice USN-374-1 November 01, 2006 wv vulnerability CVE-2006-4513 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.10: libwv-1.2-1 1.2.1-2ubuntu0.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: An integer overflow was discovered in the DOC file parser of the wv library. By tricking a user into opening a specially crafted MSWord (.DOC) file, remote attackers could execute arbitrary code with the user's privileges.