ID de Prueba:	1.3.6.1.4.1.25623.1.0.704593
Categoría:	Debian Local Security Checks
Título:	Debian Security Advisory DSA 4593-1 (freeimage - security update)
Resumen:	The remote host is missing an update for the 'freeimage'; package(s) announced via the DSA-4593-1 advisory.
Descripción:	Summary: The remote host is missing an update for the 'freeimage' package(s) announced via the DSA-4593-1 advisory. Vulnerability Insight: It was found that freeimage, a graphics library, was affected by the following two security issues: CVE-2019-12211 Heap buffer overflow caused by invalid memcpy in PluginTIFF. This flaw might be leveraged by remote attackers to trigger denial of service or any other unspecified impact via crafted TIFF data. CVE-2019-12213 Stack exhaustion caused by unwanted recursion in PluginTIFF. This flaw might be leveraged by remote attackers to trigger denial of service via crafted TIFF data. Affected Software/OS: 'freeimage' package(s) on Debian Linux. Solution: For the oldstable distribution (stretch), these problems have been fixed in version 3.17.0+ds1-5+deb9u1. For the stable distribution (buster), these problems have been fixed in version 3.18.0+ds2-1+deb10u1. We recommend that you upgrade your freeimage packages. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-12211 Common Vulnerability Exposure (CVE) ID: CVE-2019-12213
Copyright	Copyright (C) 2019 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.