Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | |||
Test Kennung: | 1.3.6.1.4.1.25623.1.0.880827 |
Kategorie: | CentOS Local Security Checks |
Titel: | CentOS Update for gpdf CESA-2009:1681 centos4 i386 |
Zusammenfassung: | The remote host is missing an update for the 'gpdf'; package(s) announced via the referenced advisory. |
Beschreibung: | Summary: The remote host is missing an update for the 'gpdf' package(s) announced via the referenced advisory. Vulnerability Insight: GPdf is a viewer for Portable Document Format (PDF) files. Petr Gajdos and Christian Kornacker of SUSE reported a buffer overflow flaw in GPdf's Type 1 font parser. A specially-crafted PDF file with an embedded Type 1 font could cause GPdf to crash or, possibly, execute arbitrary code when opened. (CVE-2009-4035) Users are advised to upgrade to this updated package, which contains a backported patch to correct this issue. Affected Software/OS: gpdf on CentOS 4 Solution: Please install the updated packages. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C |
Querverweis: |
Common Vulnerability Exposure (CVE) ID: CVE-2009-4035 BugTraq ID: 37350 http://www.securityfocus.com/bid/37350 http://cgit.freedesktop.org/poppler/poppler/tree/fofi/FoFiType1.cc?id=4b4fc5c017bf147c9069bbce32fc14467bd2a81a https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10996 http://www.redhat.com/support/errata/RHSA-2009-1680.html http://www.redhat.com/support/errata/RHSA-2009-1681.html http://www.redhat.com/support/errata/RHSA-2009-1682.html http://www.securitytracker.com/id?1023356 http://secunia.com/advisories/37641 http://secunia.com/advisories/37781 http://secunia.com/advisories/37787 http://secunia.com/advisories/37793 SuSE Security Announcement: SUSE-SR:2010:003 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00003.html http://www.vupen.com/english/advisories/2009/3555 XForce ISS Database: xpdf-fofitype1parse-bo(54831) https://exchange.xforce.ibmcloud.com/vulnerabilities/54831 |
Copyright | Copyright (c) 2011 Greenbone Networks GmbH |
Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |