Turbolinux Local Security Tests : Turbolinux TLSA-2007-44 (libexif)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.59674

Categoría: Turbolinux Local Security Tests

Título: Turbolinux TLSA-2007-44 (libexif)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing an update to libexif
announced via advisory TLSA-2007-44.

Libexif is a library for parsing, editing, and saving EXIF data. It is
intended to replace lots of redundant implementations in command-line
utilities and programs with GUIs.

Remote attackers to cause a denial of service.

Integer overflow and denial of service (crash) or possibly execute arbitrary code.

Solution: Please use the turbopkg (zabom) tool to apply the update.
https://secure1.securityspace.com/smysecure/catid.html?in=TLSA-2007-44

Risk factor : Critical

CVSS Score:
9.3

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2007-2645
BugTraq ID: 23927
http://www.securityfocus.com/bid/23927
Bugtraq: 20070604 FLEA-2007-0024-1: libexif (Google Search)
http://www.securityfocus.com/archive/1/470502/100/100/threaded
Debian Security Information: DSA-1487 (Google Search)
http://www.debian.org/security/2008/dsa-1487
http://security.gentoo.org/glsa/glsa-200706-01.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2007:118
http://sourceforge.net/tracker/index.php?func=detail&aid=1716196&group_id=12272&atid=112272
http://osvdb.org/35978
http://secunia.com/advisories/25235
http://secunia.com/advisories/25540
http://secunia.com/advisories/25569
http://secunia.com/advisories/25599
http://secunia.com/advisories/25621
http://secunia.com/advisories/25932
http://secunia.com/advisories/26083
http://secunia.com/advisories/28776
SuSE Security Announcement: SUSE-SA:2007:039 (Google Search)
http://www.novell.com/linux/security/advisories/2007_39_libexif.html
SuSE Security Announcement: SUSE-SR:2007:014 (Google Search)
http://www.novell.com/linux/security/advisories/2007_14_sr.html
http://www.ubuntu.com/usn/usn-471-1
http://www.vupen.com/english/advisories/2007/1761
XForce ISS Database: libexif-exifdataloaddata-integer-overflow(34233)
https://exchange.xforce.ibmcloud.com/vulnerabilities/34233

Copyright Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.59674
Categoría:	Turbolinux Local Security Tests
Título:	Turbolinux TLSA-2007-44 (libexif)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to libexif announced via advisory TLSA-2007-44. Libexif is a library for parsing, editing, and saving EXIF data. It is intended to replace lots of redundant implementations in command-line utilities and programs with GUIs. Remote attackers to cause a denial of service. Integer overflow and denial of service (crash) or possibly execute arbitrary code. Solution: Please use the turbopkg (zabom) tool to apply the update. https://secure1.securityspace.com/smysecure/catid.html?in=TLSA-2007-44 Risk factor : Critical CVSS Score: 9.3
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-2645 BugTraq ID: 23927 http://www.securityfocus.com/bid/23927 Bugtraq: 20070604 FLEA-2007-0024-1: libexif (Google Search) http://www.securityfocus.com/archive/1/470502/100/100/threaded Debian Security Information: DSA-1487 (Google Search) http://www.debian.org/security/2008/dsa-1487 http://security.gentoo.org/glsa/glsa-200706-01.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:118 http://sourceforge.net/tracker/index.php?func=detail&aid=1716196&group_id=12272&atid=112272 http://osvdb.org/35978 http://secunia.com/advisories/25235 http://secunia.com/advisories/25540 http://secunia.com/advisories/25569 http://secunia.com/advisories/25599 http://secunia.com/advisories/25621 http://secunia.com/advisories/25932 http://secunia.com/advisories/26083 http://secunia.com/advisories/28776 SuSE Security Announcement: SUSE-SA:2007:039 (Google Search) http://www.novell.com/linux/security/advisories/2007_39_libexif.html SuSE Security Announcement: SUSE-SR:2007:014 (Google Search) http://www.novell.com/linux/security/advisories/2007_14_sr.html http://www.ubuntu.com/usn/usn-471-1 http://www.vupen.com/english/advisories/2007/1761 XForce ISS Database: libexif-exifdataloaddata-integer-overflow(34233) https://exchange.xforce.ibmcloud.com/vulnerabilities/34233
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com