Test Kennung:	1.3.6.1.4.1.25623.1.0.72142
Kategorie:	Mandrake Local Security Checks
Titel:	Mandriva Security Advisory MDVSA-2012:121 (libjpeg-turbo)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing an update to libjpeg-turbo announced via advisory MDVSA-2012:121. A vulnerability has been discovered and corrected in libjpeg-turbo: A Heap-based buffer overflow was found in the way libjpeg-turbo decompressed certain corrupt JPEG images in which the component count was erroneously set to a large value. An attacker could create a specially-crafted JPEG image that, when opened, could cause an application using libpng to crash or, possibly, execute arbitrary code with the privileges of the user running the application (CVE-2012-2806). The updated packages have been patched to correct this issue. Affected: 2011. Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2012:121 Risk factor : High
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2012-2806 BugTraq ID: 54480 http://www.securityfocus.com/bid/54480 http://security.gentoo.org/glsa/glsa-201209-13.xml http://www.mandriva.com/security/advisories?name=MDVSA-2012:121 https://bugzilla.mozilla.org/show_bug.cgi?id=759802 https://bugzilla.redhat.com/show_bug.cgi?id=826849 http://www.openwall.com/lists/oss-security/2012/07/17/3 http://osvdb.org/84040 http://secunia.com/advisories/49883 http://secunia.com/advisories/50753 XForce ISS Database: libjpegturbo-getsos-bo(76952) https://exchange.xforce.ibmcloud.com/vulnerabilities/76952
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.