ID de Prueba:	1.3.6.1.4.1.25623.1.0.55107
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2005:143 (kdegraphics)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to kdegraphics announced via advisory MDKSA-2005:143. Wouter Hanegraaff discovered that the TIFF library did not sufficiently validate the YCbCr subsampling value in TIFF image headers. Decoding a malicious image with a zero value resulted in an arithmetic exception, which can cause a program that uses the TIFF library to crash. Kdegraphics < 3.3 uses an embedded libtiff source tree for kfax, and as such has the same vulnerability. The updated packages are patched to protect against this vulnerability. Affected versions: 10.1, Corporate 3.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2005:143 Risk factor : Medium CVSS Score: 5.0
Referencia Cruzada:	BugTraq ID: 14417 Common Vulnerability Exposure (CVE) ID: CVE-2005-2452 http://www.securityfocus.com/bid/14417 http://www.mandriva.com/security/advisories?name=MDKSA-2005:142 http://www.mandriva.com/security/advisories?name=MDKSA-2005:143 http://www.mandriva.com/security/advisories?name=MDKSA-2005:144 https://bugzilla.ubuntu.com/show_bug.cgi?id=12008 http://secunia.com/advisories/16266 http://secunia.com/advisories/16486 https://usn.ubuntu.com/156-1/
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.