Test Kennung:	1.3.6.1.4.1.25623.1.0.55107
Kategorie:	Mandrake Local Security Checks
Titel:	Mandrake Security Advisory MDKSA-2005:143 (kdegraphics)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing an update to kdegraphics announced via advisory MDKSA-2005:143. Wouter Hanegraaff discovered that the TIFF library did not sufficiently validate the YCbCr subsampling value in TIFF image headers. Decoding a malicious image with a zero value resulted in an arithmetic exception, which can cause a program that uses the TIFF library to crash. Kdegraphics < 3.3 uses an embedded libtiff source tree for kfax, and as such has the same vulnerability. The updated packages are patched to protect against this vulnerability. Affected versions: 10.1, Corporate 3.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2005:143 Risk factor : Medium CVSS Score: 5.0
Querverweis:	BugTraq ID: 14417 Common Vulnerability Exposure (CVE) ID: CVE-2005-2452 http://www.securityfocus.com/bid/14417 http://www.mandriva.com/security/advisories?name=MDKSA-2005:142 http://www.mandriva.com/security/advisories?name=MDKSA-2005:143 http://www.mandriva.com/security/advisories?name=MDKSA-2005:144 https://bugzilla.ubuntu.com/show_bug.cgi?id=12008 http://secunia.com/advisories/16266 http://secunia.com/advisories/16486 https://usn.ubuntu.com/156-1/
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.