Test ID:	1.3.6.1.4.1.25623.1.0.70830
Category:	Ubuntu Local Security Checks
Title:	Ubuntu USN-1120-1 (libtiff4)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to libtiff4 announced via advisory USN-1120-1. Details: It was discovered that the TIFF library incorrectly handled certain JPEG data. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could execute arbitrary code with user privileges, or crash the application, leading to a denial of service. Solution: The problem can be corrected by updating your system to the following package versions: Ubuntu 10.10: libtiff4 3.9.4-2ubuntu0.4 Ubuntu 10.04 LTS: libtiff4 3.9.2-2ubuntu0.7 https://secure1.securityspace.com/smysecure/catid.html?in=USN-1120-1 CVSS Score: 6.8 CVSS Vector: AV:L/AC:H/Au:NR/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-5022 1025380 http://securitytracker.com/id?1025380 44271 http://secunia.com/advisories/44271 47338 http://www.securityfocus.com/bid/47338 50726 http://secunia.com/advisories/50726 ADV-2011-1014 http://www.vupen.com/english/advisories/2011/1014 ADV-2011-1082 http://www.vupen.com/english/advisories/2011/1082 DSA-2256 http://www.debian.org/security/2011/dsa-2256 FEDORA-2011-5304 http://lists.fedoraproject.org/pipermail/package-announce/2011-April/058478.html GLSA-201209-02 http://security.gentoo.org/glsa/glsa-201209-02.xml MDVSA-2011:078 http://www.mandriva.com/security/advisories?name=MDVSA-2011:078 RHSA-2011:0452 http://www.redhat.com/support/errata/RHSA-2011-0452.html USN-1120-1 http://www.ubuntu.com/usn/USN-1120-1 [oss-security] 20110412 libtiff CVE assignments http://openwall.com/lists/oss-security/2011/04/12/10 http://bugzilla.maptools.org/show_bug.cgi?id=1999 http://www.remotesensing.org/libtiff/v3.9.5.html https://bugzilla.redhat.com/show_bug.cgi?id=695885 libtiff-ojpeg-bo(66774) https://exchange.xforce.ibmcloud.com/vulnerabilities/66774
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.