GNOME flaw threatens Linux users

By Robert Lemos
Staff Writer, CNET News

A vulnerability in the default image viewer for one of the two major Linux desktop systems could allow an attacker to execute code on a computer running the GNOME software, security group Core Security Technologies said in an advisory on Friday. The primary danger appears to be that some mail readers use the software, called Eye of GNOME, to display images within e-mails, opening the possibility that a virus could be spread using the flaw.

The threat is reduced by several factors, stated the security group. Many Linux users run the other major desktop software, KDE, and may not have the GNOME libraries nor the Eye of GNOME application installed. Moreover, many mail readers do not pass images to EoG automatically. Finally, any program started by EoG will only run with the privileges of the user, so the system shouldn't be harmed. The patched version of the software can be downloaded from the GNOME Project site.

Latest tech news headlines

Flexing the boundaries of flash memory
Posted in Software, Interrupted by Dave Rosenberg

December 27, 2009 4:50 PM PST
Google makes its home page a Chrome page
Posted in Technically Incorrect by Chris Matyszczyk

December 27, 2009 7:40 AM PST
Police to put drunk drivers' names on Twitter
Posted in Technically Incorrect by Chris Matyszczyk

December 26, 2009 2:17 PM PST
See all headlines

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.

More feeds available in our RSS feed index.

Markets: Market news, charts, SEC filings, and more; Related quotes; Dow Jones Industrials (0.00%) 0.00 10,520.10; S&P 500 (0.53%) 5.89 1,126.48; NASDAQ (0.71%) 16.05 2,285.69; CNET TECH (0.64%) 10.53 1,657.91

Inside CNET News

Scroll Left Scroll Right

Business Tech
Kindle is most gifted Amazon item, ever
Statement on holiday sales declares the Kindle king; On Christmas Day, for the first time ever, more books for the e-reader sold than physical copies.
Gallery
Top-rated reviews of the week (photos)
The Open Road
Open source became big business in 2009
Open source has always been an important sideshow for software vendors, but in 2009 it became the main event thanks to Google.
Beyond Binary
Visual Studio launch delayed by 'a few weeks'
Microsoft says it's still working to resolve some performance issues related to the Visual Studio 2010 developer tool suite, which was slated for a March release.
Video
Behind the scenes of CBS's NFL coverage
Technically Incorrect
Google makes its home page a Chrome page
Without apparent notice or fanfare, Google adorns its home page with a very visible ad for Chrome.
Video
Deep-sea volcanic explosion--part 2 (video)
The Social
Facebook COO nominated to Disney board
Sheryl Sandberg, who has been chief operating officer of the social network for nearly two years now, will join the board if shareholders approve in March.
The Space Shot
Soyuz craft docks, boosts space station crew
A Russian Soyuz spacecraft docked with the International Space Station Tuesday after a smooth, automated approach, boosting the lab's crew back up to five.
Gallery
Lookout keeps an eye on mobile-device security (photos)
Crave
Will the Apple tablet be a full-fledged computer?
Either the Apple tablet (or iSlate, or whatever it ends up being called) will be a 10-or-so-inch tablet PC with a full Mac OSX operating system; or it will merely be a larger-screen version of the current iPod Touch, which has a closed, limited phone-like
Green Tech
Ford sees bump in hybrid sales
Carmaker says its hybrid sales are up 67 percent this year, despite an 11 percent slump industrywide.