Ubuntu Local Security Checks : Ubuntu Update for libwmf USN-2670-1

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.842276

Categoría: Ubuntu Local Security Checks

Título: Ubuntu Update for libwmf USN-2670-1

Resumen: The remote host is missing an update for the 'libwmf'; package(s) announced via the referenced advisory.

Descripción: Summary:
The remote host is missing an update for the 'libwmf'
package(s) announced via the referenced advisory.

Vulnerability Insight:
Fernando Muñ oz and Stefan Cornelius
discovered that libwmf incorrectly handled certain malformed images. If a user
or automated system were tricked into opening a crafted image file, an attacker
could cause a denial of service or execute arbitrary code with privileges of the
user invoking the program.

Affected Software/OS:
libwmf on Ubuntu 14.10,
Ubuntu 14.04 LTS,
Ubuntu 12.04 LTS

Solution:
Please Install the Updated Packages.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2015-0848
BugTraq ID: 74923
http://www.securityfocus.com/bid/74923
Debian Security Information: DSA-3302 (Google Search)
http://www.debian.org/security/2015/dsa-3302
http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165547.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168507.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160668.html
https://security.gentoo.org/glsa/201602-03
http://www.openwall.com/lists/oss-security/2015/06/01/2
RedHat Security Advisories: RHSA-2015:1917
http://rhn.redhat.com/errata/RHSA-2015-1917.html
http://www.securitytracker.com/id/1032771
SuSE Security Announcement: openSUSE-SU-2015:1132 (Google Search)
http://lists.opensuse.org/opensuse-updates/2015-06/msg00051.html
SuSE Security Announcement: openSUSE-SU-2015:1134 (Google Search)
http://lists.opensuse.org/opensuse-updates/2015-06/msg00053.html
SuSE Security Announcement: openSUSE-SU-2015:1212 (Google Search)
http://lists.opensuse.org/opensuse-updates/2015-07/msg00018.html
http://www.ubuntu.com/usn/USN-2670-1
Common Vulnerability Exposure (CVE) ID: CVE-2015-4588
BugTraq ID: 75230
http://www.securityfocus.com/bid/75230
http://www.openwall.com/lists/oss-security/2015/06/03/6
http://www.openwall.com/lists/oss-security/2015/06/16/4
Common Vulnerability Exposure (CVE) ID: CVE-2015-4695
BugTraq ID: 75329
http://www.securityfocus.com/bid/75329
http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162569.html
http://www.openwall.com/lists/oss-security/2015/06/17/3
http://www.openwall.com/lists/oss-security/2015/06/21/3
Common Vulnerability Exposure (CVE) ID: CVE-2015-4696
BugTraq ID: 75331
http://www.securityfocus.com/bid/75331

Copyright Copyright (C) 2015 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.842276
Categoría:	Ubuntu Local Security Checks
Título:	Ubuntu Update for libwmf USN-2670-1
Resumen:	The remote host is missing an update for the 'libwmf'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'libwmf' package(s) announced via the referenced advisory. Vulnerability Insight: Fernando Muñ oz and Stefan Cornelius discovered that libwmf incorrectly handled certain malformed images. If a user or automated system were tricked into opening a crafted image file, an attacker could cause a denial of service or execute arbitrary code with privileges of the user invoking the program. Affected Software/OS: libwmf on Ubuntu 14.10, Ubuntu 14.04 LTS, Ubuntu 12.04 LTS Solution: Please Install the Updated Packages. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-0848 BugTraq ID: 74923 http://www.securityfocus.com/bid/74923 Debian Security Information: DSA-3302 (Google Search) http://www.debian.org/security/2015/dsa-3302 http://lists.fedoraproject.org/pipermail/package-announce/2015-September/165547.html http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168507.html http://lists.fedoraproject.org/pipermail/package-announce/2015-June/160668.html https://security.gentoo.org/glsa/201602-03 http://www.openwall.com/lists/oss-security/2015/06/01/2 RedHat Security Advisories: RHSA-2015:1917 http://rhn.redhat.com/errata/RHSA-2015-1917.html http://www.securitytracker.com/id/1032771 SuSE Security Announcement: openSUSE-SU-2015:1132 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-06/msg00051.html SuSE Security Announcement: openSUSE-SU-2015:1134 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-06/msg00053.html SuSE Security Announcement: openSUSE-SU-2015:1212 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-07/msg00018.html http://www.ubuntu.com/usn/USN-2670-1 Common Vulnerability Exposure (CVE) ID: CVE-2015-4588 BugTraq ID: 75230 http://www.securityfocus.com/bid/75230 http://www.openwall.com/lists/oss-security/2015/06/03/6 http://www.openwall.com/lists/oss-security/2015/06/16/4 Common Vulnerability Exposure (CVE) ID: CVE-2015-4695 BugTraq ID: 75329 http://www.securityfocus.com/bid/75329 http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162569.html http://www.openwall.com/lists/oss-security/2015/06/17/3 http://www.openwall.com/lists/oss-security/2015/06/21/3 Common Vulnerability Exposure (CVE) ID: CVE-2015-4696 BugTraq ID: 75331 http://www.securityfocus.com/bid/75331
Copyright	Copyright (C) 2015 Greenbone Networks GmbH