ID de Prueba:	1.3.6.1.4.1.25623.1.0.890953
Categoría:	Debian Local Security Checks
Título:	Debian LTS: Security Advisory for graphicsmagick (DLA-953-1)
Resumen:	Chris Evans discovered that graphicsmagick used uninitialized memory;in the RLE decoder, allowing a remote attacker to leak sensitive;information from process memory space.
Descripción:	Summary: Chris Evans discovered that graphicsmagick used uninitialized memory in the RLE decoder, allowing a remote attacker to leak sensitive information from process memory space. Affected Software/OS: graphicsmagick on Debian Linux Solution: For Debian 7 'Wheezy', these problems have been fixed in version 1.3.16-1.1+deb7u7. We recommend that you upgrade your graphicsmagick packages. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-9098 BugTraq ID: 98593 http://www.securityfocus.com/bid/98593 Debian Security Information: DSA-3863 (Google Search) http://www.debian.org/security/2017/dsa-3863 http://hg.code.sf.net/p/graphicsmagick/code/diff/0a5b75e019b6/coders/rle.c https://github.com/ImageMagick/ImageMagick/commit/1c358ffe0049f768dd49a8a889c1cbf99ac9849b https://scarybeastsecurity.blogspot.com/2017/05/bleed-continues-18-byte-file-14k-bounty.html https://lists.debian.org/debian-lts-announce/2018/08/msg00002.html
Copyright	Copyright (C) 2018 Greenbone Networks GmbH http://greenbone.net

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.