Test ID:	1.3.6.1.4.1.25623.1.0.840014
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-557-1)
Summary:	The remote host is missing an update for the 'libgd2' package(s) announced via the USN-557-1 advisory.
Description:	Summary: The remote host is missing an update for the 'libgd2' package(s) announced via the USN-557-1 advisory. Vulnerability Insight: Mattias Bengtsson and Philip Olausson discovered that the GD library did not properly perform bounds checking when creating images. An attacker could send specially crafted input to applications linked against libgd2 and cause a denial of service or possibly execute arbitrary code. Affected Software/OS: 'libgd2' package(s) on Ubuntu 6.06, Ubuntu 6.10, Ubuntu 7.04, Ubuntu 7.10. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2007-3996 Debian Security Information: DSA-1613 (Google Search) http://www.debian.org/security/2008/dsa-1613 https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00354.html http://www.gentoo.org/security/en/glsa/glsa-200710-02.xml http://security.gentoo.org/glsa/glsa-200712-13.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:187 http://secweb.se/en/advisories/php-imagecopyresized-integer-overflow/ http://secweb.se/en/advisories/php-imagecreatetruecolor-integer-overflow/ https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11147 http://www.redhat.com/support/errata/RHSA-2007-0888.html RedHat Security Advisories: RHSA-2007:0889 http://rhn.redhat.com/errata/RHSA-2007-0889.html http://www.redhat.com/support/errata/RHSA-2007-0890.html http://www.redhat.com/support/errata/RHSA-2007-0891.html http://secunia.com/advisories/26642 http://secunia.com/advisories/26822 http://secunia.com/advisories/26838 http://secunia.com/advisories/26871 http://secunia.com/advisories/26895 http://secunia.com/advisories/26930 http://secunia.com/advisories/26967 http://secunia.com/advisories/27102 http://secunia.com/advisories/27351 http://secunia.com/advisories/27377 http://secunia.com/advisories/27545 http://secunia.com/advisories/28009 http://secunia.com/advisories/28147 http://secunia.com/advisories/28658 http://secunia.com/advisories/31168 http://securityreason.com/securityalert/3103 SuSE Security Announcement: SUSE-SA:2008:004 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html http://www.trustix.org/errata/2007/0026/ http://www.ubuntu.com/usn/usn-557-1 http://www.vupen.com/english/advisories/2007/3023 XForce ISS Database: php-gdimagecopyresized-bo(36383) https://exchange.xforce.ibmcloud.com/vulnerabilities/36383 XForce ISS Database: php-gdimagecreate-bo(36382) https://exchange.xforce.ibmcloud.com/vulnerabilities/36382
Copyright	Copyright (C) 2009 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.