Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | |||
Test Kennung: | 1.3.6.1.4.1.25623.1.0.880712 |
Kategorie: | CentOS Local Security Checks |
Titel: | CentOS Update for lcms CESA-2009:0011 centos5 i386 |
Zusammenfassung: | The remote host is missing an update for the 'lcms'; package(s) announced via the referenced advisory. |
Beschreibung: | Summary: The remote host is missing an update for the 'lcms' package(s) announced via the referenced advisory. Vulnerability Insight: Little Color Management System (LittleCMS, or simply 'lcms') is a small-footprint, speed-optimized open source color management engine. Multiple insufficient input validation flaws were discovered in LittleCMS. An attacker could use these flaws to create a specially-crafted image file which could cause an application using LittleCMS to crash, or, possibly, execute arbitrary code when opened. (CVE-2008-5316, CVE-2008-5317) Users of lcms should upgrade to these updated packages, which contain backported patches to correct these issues. All running applications using lcms library must be restarted for the update to take effect. Affected Software/OS: lcms on CentOS 5 Solution: Please install the updated packages. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C |
Querverweis: |
Common Vulnerability Exposure (CVE) ID: CVE-2008-5316 BugTraq ID: 32708 http://www.securityfocus.com/bid/32708 Debian Security Information: DSA-1684 (Google Search) http://www.debian.org/security/2008/dsa-1684 http://www.openwall.com/lists/oss-security/2008/11/28/3 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10531 http://www.redhat.com/support/errata/RHSA-2009-0011.html http://secunia.com/advisories/33066 XForce ISS Database: lcms-readembeddedtexttag-bo(47119) https://exchange.xforce.ibmcloud.com/vulnerabilities/47119 Common Vulnerability Exposure (CVE) ID: CVE-2008-5317 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10685 http://secunia.com/advisories/33219 https://usn.ubuntu.com/693-1/ XForce ISS Database: lcms-cmsallocgamma-bo(47120) https://exchange.xforce.ibmcloud.com/vulnerabilities/47120 |
Copyright | Copyright (c) 2011 Greenbone Networks GmbH |
Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |