Mandrake Local Security Checks : Mandriva Security Advisory MDVSA-2011:110 (gimp)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.69827

Categoría: Mandrake Local Security Checks

Título: Mandriva Security Advisory MDVSA-2011:110 (gimp)

Resumen: NOSUMMARY

Descripción: Description:
The remote host is missing an update to gimp
announced via advisory MDVSA-2011:110.

A vulnerability was discovered and corrected in gimp:

Multiple integer overflows in the load_image function in file-pcx.c in
the Personal Computer Exchange (PCX) plugin in GIMP 2.6.x and earlier
allow remote attackers to cause a denial of service (application
crash) or possibly execute arbitrary code via a crafted PCX image
that triggers a heap-based buffer overflow (CVE-2011-1178).

Packages for 2009.0 are provided as of the Extended Maintenance
Program. Please visit this link to learn more:
http://store.mandriva.com/product_info.php?cPath=149&products_id=490

The updated packages have been patched to correct this issue.

Affected: 2009.0, Enterprise Server 5.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2011:110

Risk factor : High

CVSS Score:
6.8

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2011-1178
1025586
http://securitytracker.com/id?1025586
48057
http://www.securityfocus.com/bid/48057
50737
http://secunia.com/advisories/50737
GLSA-201209-23
http://security.gentoo.org/glsa/glsa-201209-23.xml
MDVSA-2011:110
http://www.mandriva.com/security/advisories?name=MDVSA-2011:110
RHSA-2011:0837
http://www.redhat.com/support/errata/RHSA-2011-0837.html
RHSA-2011:0838
http://www.redhat.com/support/errata/RHSA-2011-0838.html
gimp-pcximage-bo(67787)
https://exchange.xforce.ibmcloud.com/vulnerabilities/67787
http://git.gnome.org/browse/gimp/commit/?id=a9671395f6573e90316a9d748588c5435216f6ce
https://bugzilla.redhat.com/show_bug.cgi?id=689831

Copyright Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.69827
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Security Advisory MDVSA-2011:110 (gimp)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to gimp announced via advisory MDVSA-2011:110. A vulnerability was discovered and corrected in gimp: Multiple integer overflows in the load_image function in file-pcx.c in the Personal Computer Exchange (PCX) plugin in GIMP 2.6.x and earlier allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PCX image that triggers a heap-based buffer overflow (CVE-2011-1178). Packages for 2009.0 are provided as of the Extended Maintenance Program. Please visit this link to learn more: http://store.mandriva.com/product_info.php?cPath=149&products_id=490 The updated packages have been patched to correct this issue. Affected: 2009.0, Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2011:110 Risk factor : High CVSS Score: 6.8
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1178 1025586 http://securitytracker.com/id?1025586 48057 http://www.securityfocus.com/bid/48057 50737 http://secunia.com/advisories/50737 GLSA-201209-23 http://security.gentoo.org/glsa/glsa-201209-23.xml MDVSA-2011:110 http://www.mandriva.com/security/advisories?name=MDVSA-2011:110 RHSA-2011:0837 http://www.redhat.com/support/errata/RHSA-2011-0837.html RHSA-2011:0838 http://www.redhat.com/support/errata/RHSA-2011-0838.html gimp-pcximage-bo(67787) https://exchange.xforce.ibmcloud.com/vulnerabilities/67787 http://git.gnome.org/browse/gimp/commit/?id=a9671395f6573e90316a9d748588c5435216f6ce https://bugzilla.redhat.com/show_bug.cgi?id=689831
Copyright	Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com