Mandrake Local Security Checks : Mandrake Security Advisory MDKSA-2005:199 (netpbm)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.55767

Categoría: Mandrake Local Security Checks

Título: Mandrake Security Advisory MDKSA-2005:199 (netpbm)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing an update to netpbm
announced via advisory MDKSA-2005:199.

Pnmtopng in netpbm 10.2X, when using the -trans option, uses
uninitialized size and index variables when converting Portable
Anymap (PNM) images to Portable Network Graphics (PNG), which might
allow attackers to execute arbitrary code by modifying the stack.

Netpbm 9.2X is not affected by this vulnerability.

The updated packages have been patched to correct this problem.

Affected: 10.2, 2006.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2005:199

Risk factor : High

CVSS Score:
7.5

Referencia Cruzada: BugTraq ID: 15128
Common Vulnerability Exposure (CVE) ID: CVE-2005-2978
1015071
http://securitytracker.com/id?1015071
15128
http://www.securityfocus.com/bid/15128
17221
http://secunia.com/advisories/17221
17222
http://secunia.com/advisories/17222
17256
http://secunia.com/advisories/17256
17265
http://secunia.com/advisories/17265
17282
http://secunia.com/advisories/17282
17357
http://secunia.com/advisories/17357
ADV-2005-2133
http://www.vupen.com/english/advisories/2005/2133
DSA-878
http://www.debian.org/security/2005/dsa-878
GLSA-200510-18
http://www.gentoo.org/security/en/glsa/glsa-200510-18.xml
RHSA-2005:793
http://www.redhat.com/support/errata/RHSA-2005-793.html
SUSE-SR:2005:024
http://www.novell.com/linux/security/advisories/2005_24_sr.html
USN-210-1
https://usn.ubuntu.com/210-1/
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=168278
oval:org.mitre.oval:def:10135
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10135

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.55767
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2005:199 (netpbm)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to netpbm announced via advisory MDKSA-2005:199. Pnmtopng in netpbm 10.2X, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap (PNM) images to Portable Network Graphics (PNG), which might allow attackers to execute arbitrary code by modifying the stack. Netpbm 9.2X is not affected by this vulnerability. The updated packages have been patched to correct this problem. Affected: 10.2, 2006.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2005:199 Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	BugTraq ID: 15128 Common Vulnerability Exposure (CVE) ID: CVE-2005-2978 1015071 http://securitytracker.com/id?1015071 15128 http://www.securityfocus.com/bid/15128 17221 http://secunia.com/advisories/17221 17222 http://secunia.com/advisories/17222 17256 http://secunia.com/advisories/17256 17265 http://secunia.com/advisories/17265 17282 http://secunia.com/advisories/17282 17357 http://secunia.com/advisories/17357 ADV-2005-2133 http://www.vupen.com/english/advisories/2005/2133 DSA-878 http://www.debian.org/security/2005/dsa-878 GLSA-200510-18 http://www.gentoo.org/security/en/glsa/glsa-200510-18.xml RHSA-2005:793 http://www.redhat.com/support/errata/RHSA-2005-793.html SUSE-SR:2005:024 http://www.novell.com/linux/security/advisories/2005_24_sr.html USN-210-1 https://usn.ubuntu.com/210-1/ https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=168278 oval:org.mitre.oval:def:10135 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10135
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com