 |
Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | ||
| Test Kennung: | 1.3.6.1.4.1.25623.1.0.880809 |
| Kategorie: | CentOS Local Security Checks |
| Titel: | CentOS Update for kdegraphics CESA-2009:1682 centos4 i386 |
| Zusammenfassung: | The remote host is missing an update for the 'kdegraphics'; package(s) announced via the referenced advisory. |
| Beschreibung: | Summary: The remote host is missing an update for the 'kdegraphics' package(s) announced via the referenced advisory. Vulnerability Insight: The kdegraphics packages contain applications for the K Desktop Environment, including KPDF, a viewer for Portable Document Format (PDF) files. Petr Gajdos and Christian Kornacker of SUSE reported a buffer overflow flaw in KPDF's Type 1 font parser. A specially-crafted PDF file with an embedded Type 1 font could cause KPDF to crash or, possibly, execute arbitrary code when opened. (CVE-2009-4035) Users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. Affected Software/OS: kdegraphics on CentOS 4 Solution: Please install the updated packages. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C |
| Querverweis: |
Common Vulnerability Exposure (CVE) ID: CVE-2009-4035 1023356 http://www.securitytracker.com/id?1023356 37350 http://www.securityfocus.com/bid/37350 37641 http://secunia.com/advisories/37641 37781 http://secunia.com/advisories/37781 37787 http://secunia.com/advisories/37787 37793 http://secunia.com/advisories/37793 ADV-2009-3555 http://www.vupen.com/english/advisories/2009/3555 RHSA-2009:1680 http://www.redhat.com/support/errata/RHSA-2009-1680.html RHSA-2009:1681 http://www.redhat.com/support/errata/RHSA-2009-1681.html RHSA-2009:1682 http://www.redhat.com/support/errata/RHSA-2009-1682.html SUSE-SR:2010:003 http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00003.html http://cgit.freedesktop.org/poppler/poppler/diff/fofi/FoFiType1.cc?id=4b4fc5c0 http://cgit.freedesktop.org/poppler/poppler/tree/fofi/FoFiType1.cc?id=4b4fc5c017bf147c9069bbce32fc14467bd2a81a https://bugzilla.redhat.com/show_bug.cgi?id=541614 oval:org.mitre.oval:def:10996 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10996 xpdf-fofitype1parse-bo(54831) https://exchange.xforce.ibmcloud.com/vulnerabilities/54831 |
| Copyright | Copyright (C) 2011 Greenbone AG |
| Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |