Test Kennung:	1.3.6.1.4.1.25623.1.0.122485
Kategorie:	Oracle Linux Local Security Checks
Titel:	Oracle: Security Advisory (ELSA-2009-0480)
Zusammenfassung:	The remote host is missing an update for the 'poppler' package(s) announced via the ELSA-2009-0480 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'poppler' package(s) announced via the ELSA-2009-0480 advisory. Vulnerability Insight: [0.5.4-4.4.el5_3.9] - Another fix of integer overflows. - Adds memory-allocation.patch. - Resolves: #490707 [0.5.4-4.4.el5_3.8] - Change calling of exit() to _exit(). - Adds exit-handling.patch. - Resolves: #490707 [0.5.4-4.4.el5_3.7] - Improve handling of EOF at JBIG2Stream.cc. - Adds eof-handling.patch. - Resolves: #490707 [0.5.4-4.4.el5_3.6] - Memory handling from upstream. - Removes CVE-2009-0146.CVE-2009-0147.CVE-2009-0166.allocation-size-check.patch. - Adds upstream-memory-handling.patch. - Resolves: #490707 [0.5.4-4.4.el5_3.5] - Fix allocation of memory in several functions. - Adds CVE-2009-0146.CVE-2009-0147.CVE-2009-0166.allocation-size-check.patch. - Removes CVE-2009-0146.CVE-2009-0147.CVE-2009-0166.long-int.patch. - Resolves: #490707 [0.5.4-4.4.el5_3.4] - Fix allocation of memory in several functions. - Add CVE-2009-0146.CVE-2009-0147.CVE-2009-0166.long-type.patch. - Resolves: #490707 [0.5.4-4.4.el5_3.3] - Add CVE-2009-0146.CVE-2009-0147.CVE-2009-0166.mem.patch. - Resolves: #490707 [0.5.4-4.4.el5_3.2] - A little change of spec file because to pass *RPM requires/provides* test. - Resolves: #490707 [0.5.4-4.4.el5_3.1] - Add CVE-2009-0146.CVE-2009-0147.CVE-2009-0166.patch. - Resolves: #490707 Affected Software/OS: 'poppler' package(s) on Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0146 http://lists.apple.com/archives/security-announce/2009/May/msg00002.html http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html BugTraq ID: 34568 http://www.securityfocus.com/bid/34568 Bugtraq: 20090417 rPSA-2009-0059-1 poppler (Google Search) http://www.securityfocus.com/archive/1/502761/100/0/threaded Bugtraq: 20090417 rPSA-2009-0061-1 cups (Google Search) http://www.securityfocus.com/archive/1/502750/100/0/threaded Cert/CC Advisory: TA09-133A http://www.us-cert.gov/cas/techalerts/TA09-133A.html Debian Security Information: DSA-1790 (Google Search) http://www.debian.org/security/2009/dsa-1790 Debian Security Information: DSA-1793 (Google Search) http://www.debian.org/security/2009/dsa-1793 https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00567.html https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01277.html https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01291.html http://security.gentoo.org/glsa/glsa-200904-20.xml http://www.mandriva.com/security/advisories?name=MDVSA-2009:101 http://www.mandriva.com/security/advisories?name=MDVSA-2010:087 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9632 http://www.redhat.com/support/errata/RHSA-2009-0429.html http://www.redhat.com/support/errata/RHSA-2009-0430.html http://www.redhat.com/support/errata/RHSA-2009-0431.html RedHat Security Advisories: RHSA-2009:0458 http://rhn.redhat.com/errata/RHSA-2009-0458.html http://www.redhat.com/support/errata/RHSA-2009-0480.html http://www.securitytracker.com/id?1022073 http://secunia.com/advisories/34291 http://secunia.com/advisories/34481 http://secunia.com/advisories/34755 http://secunia.com/advisories/34756 http://secunia.com/advisories/34852 http://secunia.com/advisories/34959 http://secunia.com/advisories/34963 http://secunia.com/advisories/34991 http://secunia.com/advisories/35037 http://secunia.com/advisories/35064 http://secunia.com/advisories/35065 http://secunia.com/advisories/35074 http://secunia.com/advisories/35618 http://secunia.com/advisories/35685 http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.578477 SuSE Security Announcement: SUSE-SA:2009:024 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00011.html SuSE Security Announcement: SUSE-SR:2009:010 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.html SuSE Security Announcement: SUSE-SR:2009:012 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html http://www.vupen.com/english/advisories/2009/1065 http://www.vupen.com/english/advisories/2009/1066 http://www.vupen.com/english/advisories/2009/1077 http://www.vupen.com/english/advisories/2009/1297 http://www.vupen.com/english/advisories/2009/1621 http://www.vupen.com/english/advisories/2010/1040 Common Vulnerability Exposure (CVE) ID: CVE-2009-0147 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9941 Common Vulnerability Exposure (CVE) ID: CVE-2009-0166 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9778 Common Vulnerability Exposure (CVE) ID: CVE-2009-0195 BugTraq ID: 34791 http://www.securityfocus.com/bid/34791 Bugtraq: 20090417 Secunia Research: CUPS pdftops JBIG2 Symbol Dictionary Buffer Overflow (Google Search) http://www.securityfocus.com/archive/1/502759/100/0/threaded Bugtraq: 20090417 Secunia Research: Xpdf JBIG2 Symbol Dictionary Buffer Overflow Vulnerability (Google Search) http://www.securityfocus.com/archive/1/502762/100/0/threaded http://secunia.com/secunia_research/2009-17/ http://secunia.com/secunia_research/2009-18/ https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10076 Common Vulnerability Exposure (CVE) ID: CVE-2009-0791 1022326 http://securitytracker.com/id?1022326 35195 http://www.securityfocus.com/bid/35195 35340 http://secunia.com/advisories/35340 35685 37023 http://secunia.com/advisories/37023 37028 http://secunia.com/advisories/37028 37037 http://secunia.com/advisories/37037 37043 http://secunia.com/advisories/37043 37077 http://secunia.com/advisories/37077 37079 http://secunia.com/advisories/37079 ADV-2009-1488 http://www.vupen.com/english/advisories/2009/1488 ADV-2009-2928 http://www.vupen.com/english/advisories/2009/2928 MDVSA-2009:334 http://www.mandriva.com/security/advisories?name=MDVSA-2009:334 RHSA-2009:1083 http://www.redhat.com/support/errata/RHSA-2009-1083.html RHSA-2009:1500 https://rhn.redhat.com/errata/RHSA-2009-1500.html RHSA-2009:1501 https://rhn.redhat.com/errata/RHSA-2009-1501.html RHSA-2009:1502 https://rhn.redhat.com/errata/RHSA-2009-1502.html RHSA-2009:1503 https://rhn.redhat.com/errata/RHSA-2009-1503.html RHSA-2009:1512 https://rhn.redhat.com/errata/RHSA-2009-1512.html SUSE-SR:2009:012 cups-pdftops-filter-bo(50941) https://exchange.xforce.ibmcloud.com/vulnerabilities/50941 https://bugzilla.redhat.com/show_bug.cgi?id=491840 oval:org.mitre.oval:def:10534 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10534 Common Vulnerability Exposure (CVE) ID: CVE-2009-0799 1022072 http://www.securitytracker.com/id?1022072 34291 34481 34568 34746 http://secunia.com/advisories/34746 34755 34756 34852 34959 34963 34991 35037 35064 35065 35618 ADV-2009-1065 ADV-2009-1066 ADV-2009-1076 http://www.vupen.com/english/advisories/2009/1076 ADV-2009-1077 ADV-2010-1040 DSA-1790 DSA-1793 FEDORA-2009-6972 FEDORA-2009-6973 FEDORA-2009-6982 MDVSA-2009:101 MDVSA-2010:087 MDVSA-2011:175 http://www.mandriva.com/security/advisories?name=MDVSA-2011:175 RHSA-2009:0429 RHSA-2009:0430 RHSA-2009:0431 RHSA-2009:0458 RHSA-2009:0480 SSA:2009-129-01 SUSE-SA:2009:024 SUSE-SR:2009:010 VU#196617 http://www.kb.cert.org/vuls/id/196617 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=495886 http://poppler.freedesktop.org/releases.html oval:org.mitre.oval:def:10204 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10204 Common Vulnerability Exposure (CVE) ID: CVE-2009-0800 1022073 https://bugzilla.redhat.com/show_bug.cgi?id=495887 oval:org.mitre.oval:def:11323 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11323 Common Vulnerability Exposure (CVE) ID: CVE-2009-1179 35379 http://secunia.com/advisories/35379 ADV-2009-1522 http://www.vupen.com/english/advisories/2009/1522 ADV-2009-1621 APPLE-SA-2009-06-08-1 http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html APPLE-SA-2009-06-17-1 http://support.apple.com/kb/HT3613 http://support.apple.com/kb/HT3639 https://bugzilla.redhat.com/show_bug.cgi?id=495889 oval:org.mitre.oval:def:11892 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11892 Common Vulnerability Exposure (CVE) ID: CVE-2009-1180 https://bugzilla.redhat.com/show_bug.cgi?id=495892 oval:org.mitre.oval:def:9926 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9926 Common Vulnerability Exposure (CVE) ID: CVE-2009-1181 https://bugzilla.redhat.com/show_bug.cgi?id=495894 oval:org.mitre.oval:def:9683 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9683 Common Vulnerability Exposure (CVE) ID: CVE-2009-1182 https://bugzilla.redhat.com/show_bug.cgi?id=495896 oval:org.mitre.oval:def:10735 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10735 Common Vulnerability Exposure (CVE) ID: CVE-2009-1183 https://bugzilla.redhat.com/show_bug.cgi?id=495899 oval:org.mitre.oval:def:10769 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10769 Common Vulnerability Exposure (CVE) ID: CVE-2009-1187 20090417 rPSA-2009-0059-1 poppler http://bugs.gentoo.org/show_bug.cgi?id=263028#c16 http://wiki.rpath.com/Advisories:rPSA-2009-0059 https://bugs.launchpad.net/ubuntu/+source/poppler/+bug/361875 oval:org.mitre.oval:def:10292 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10292 poppler-jbig2-cairooutputdev-code-excution(50184) https://exchange.xforce.ibmcloud.com/vulnerabilities/50184 Common Vulnerability Exposure (CVE) ID: CVE-2009-1188 37053 http://secunia.com/advisories/37053 39327 http://secunia.com/advisories/39327 39938 http://secunia.com/advisories/39938 ADV-2010-0802 http://www.vupen.com/english/advisories/2010/0802 ADV-2010-1220 http://www.vupen.com/english/advisories/2010/1220 DSA-2028 http://www.debian.org/security/2010/dsa-2028 DSA-2050 http://www.debian.org/security/2010/dsa-2050 FEDORA-2010-1377 http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035408.html FEDORA-2010-1805 http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035340.html FEDORA-2010-1842 http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035399.html https://bugzilla.redhat.com/show_bug.cgi?id=495907 https://bugzilla.redhat.com/show_bug.cgi?id=526915 oval:org.mitre.oval:def:9957 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9957 poppler-jbig2-splashbitmap-code-execution(50185) https://exchange.xforce.ibmcloud.com/vulnerabilities/50185 Common Vulnerability Exposure (CVE) ID: CVE-2009-3604 1021706 http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021706.1-1 1023029 http://securitytracker.com/id?1023029 274030 http://sunsolve.sun.com/search/document.do?assetkey=1-66-274030-1 36703 http://www.securityfocus.com/bid/36703 37042 http://secunia.com/advisories/37042 37114 http://secunia.com/advisories/37114 37159 http://secunia.com/advisories/37159 ADV-2009-2924 http://www.vupen.com/english/advisories/2009/2924 FEDORA-2009-10823 https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00750.html FEDORA-2009-10845 https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00784.html MDVSA-2009:287 http://www.mandriva.com/security/advisories?name=MDVSA-2009:287 SUSE-SR:2009:018 http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html USN-850-1 http://www.ubuntu.com/usn/USN-850-1 USN-850-3 http://www.ubuntu.com/usn/USN-850-3 ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl4.patch http://cgit.freedesktop.org/poppler/poppler/commit/?id=9cf2325fb2 http://cgit.freedesktop.org/poppler/poppler/diff/?id=284a928996&id2=75c3466ba2 http://site.pi3.com.pl/adv/xpdf.txt https://bugzilla.redhat.com/show_bug.cgi?id=526911 oval:org.mitre.oval:def:10969 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10969 xpdf-splashdrawimage-bo(53795) https://exchange.xforce.ibmcloud.com/vulnerabilities/53795 Common Vulnerability Exposure (CVE) ID: CVE-2009-3606 DSA-1941 http://www.debian.org/security/2009/dsa-1941 [oss-security] 20091130 Need more information on recent poppler issues http://www.openwall.com/lists/oss-security/2009/12/01/1 [oss-security] 20091130 Re: Need more information on recent poppler issues http://www.openwall.com/lists/oss-security/2009/12/01/5 [oss-security] 20091201 Re: Need more information on recent poppler issues http://www.openwall.com/lists/oss-security/2009/12/01/6 http://cgit.freedesktop.org/poppler/poppler/diff/poppler/PSOutputDev.cc?id=7b2d314a61 https://bugzilla.redhat.com/show_bug.cgi?id=526877 oval:org.mitre.oval:def:11289 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11289 oval:org.mitre.oval:def:7836 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7836 xpdf-psoutputdev-bo(53798) https://exchange.xforce.ibmcloud.com/vulnerabilities/53798
Copyright	Copyright (C) 2015 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.