Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2017.0357
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2017-0357)
Zusammenfassung:	The remote host is missing an update for the 'libraw' package(s) announced via the MGASA-2017-0357 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'libraw' package(s) announced via the MGASA-2017-0357 advisory. Vulnerability Insight: There is a floating point exception in the kodak_radc_load_raw function in dcraw_common.cpp in LibRaw 0.18.2. It will lead to a remote denial of service attack. (CVE-2017-13735) A Stack-based Buffer Overflow was discovered in xtrans_interpolate in internal/dcraw_common.cpp in LibRaw before 0.18.3. It could allow a remote denial of service or code execution attack. (CVE-2017-14265) LibRaw before 0.18.4 has a heap-based Buffer Overflow in the processCanonCameraInfo function via a crafted file. (CVE-2017-14348) Affected Software/OS: 'libraw' package(s) on Mageia 5, Mageia 6. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-13735 https://bugzilla.redhat.com/show_bug.cgi?id=1483988 Common Vulnerability Exposure (CVE) ID: CVE-2017-14265 Common Vulnerability Exposure (CVE) ID: CVE-2017-14348 BugTraq ID: 100866 http://www.securityfocus.com/bid/100866
Copyright	Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.