Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | |||
ID de Prueba: | 1.3.6.1.4.1.25623.1.0.881259 |
Categoría: | CentOS Local Security Checks |
Título: | CentOS Update for libpng10 CESA-2011:1103 centos4 x86_64 |
Resumen: | The remote host is missing an update for the 'libpng10'; package(s) announced via the referenced advisory. |
Descripción: | Summary: The remote host is missing an update for the 'libpng10' package(s) announced via the referenced advisory. Vulnerability Insight: The libpng packages contain a library of functions for creating and manipulating PNG (Portable Network Graphics) image format files. An uninitialized memory read issue was found in the way libpng processed certain PNG images that use the Physical Scale (sCAL) extension. An attacker could create a specially-crafted PNG image that, when opened, could cause an application using libpng to crash. (CVE-2011-2692) Users of libpng and libpng10 should upgrade to these updated packages, which contain a backported patch to correct this issue. All running applications using libpng or libpng10 must be restarted for the update to take effect. Affected Software/OS: libpng10 on CentOS 4 Solution: Please install the updated packages. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P |
Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2011-2692 http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html http://lists.apple.com/archives/security-announce/2012/May/msg00001.html BugTraq ID: 48618 http://www.securityfocus.com/bid/48618 CERT/CC vulnerability note: VU#819894 http://www.kb.cert.org/vuls/id/819894 Debian Security Information: DSA-2287 (Google Search) http://www.debian.org/security/2011/dsa-2287 http://lists.fedoraproject.org/pipermail/package-announce/2011-July/063118.html http://security.gentoo.org/glsa/glsa-201206-15.xml http://www.mandriva.com/security/advisories?name=MDVSA-2011:151 http://www.openwall.com/lists/oss-security/2011/07/13/2 http://www.redhat.com/support/errata/RHSA-2011-1103.html http://www.redhat.com/support/errata/RHSA-2011-1104.html http://www.redhat.com/support/errata/RHSA-2011-1105.html http://secunia.com/advisories/45046 http://secunia.com/advisories/45405 http://secunia.com/advisories/45415 http://secunia.com/advisories/45445 http://secunia.com/advisories/45460 http://secunia.com/advisories/45461 http://secunia.com/advisories/45492 http://secunia.com/advisories/49660 http://www.ubuntu.com/usn/USN-1175-1 XForce ISS Database: libpng-png-file-dos(68536) https://exchange.xforce.ibmcloud.com/vulnerabilities/68536 |
Copyright | Copyright (C) 2012 Greenbone Networks GmbH |
Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |