Test Kennung:	1.3.6.1.4.1.25623.1.0.850886
Kategorie:	SuSE Local Security Checks
Titel:	SUSE: Security Advisory for libpng16 (SUSE-SU-2015:0092-1)
Zusammenfassung:	The remote host is missing an update for the 'libpng16'; package(s) announced via the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'libpng16' package(s) announced via the referenced advisory. Vulnerability Insight: This update fixes the following security issues: * CVE-2014-9495: libpng versions heap overflow vulnerability, that under certain circumstances could be exploit. [bnc#912076] * CVE-2015-0973: A heap-based overflow was found in the png_combine_row() function of the libpng library, when very large interlaced images were used.[bnc#912929] Affected Software/OS: libpng16 on SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Desktop 12 Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2014-9495 http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html BugTraq ID: 71820 http://www.securityfocus.com/bid/71820 http://www.openwall.com/lists/oss-security/2015/01/04/3 http://www.openwall.com/lists/oss-security/2015/01/10/1 http://www.openwall.com/lists/oss-security/2015/01/10/3 http://sourceforge.net/p/png-mng/mailman/message/33173461/ http://sourceforge.net/p/png-mng/mailman/message/33172831/ http://www.securitytracker.com/id/1031444 http://secunia.com/advisories/62725 Common Vulnerability Exposure (CVE) ID: CVE-2015-0973 http://tfpwn.com/files/libpng_heap_overflow_1.6.15.txt
Copyright	Copyright (C) 2015 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.