Debian Local Security Checks : Debian Security Advisory DSA 571-1 (libpng3)

Resumen de Precio/Funciones | Ordenar | Nuevas Vulnerabilidades | Confidencialidad | Búsqueda de Vulnerabilidad

Búsqueda de Vulnerabilidad		Buscar 61204 Descripciones CVE y 32582 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.53262

Categoría: Debian Local Security Checks

Título: Debian Security Advisory DSA 571-1 (libpng3)

Resumen: Debian Security Advisory DSA 571-1 (libpng3)

Descripción: The remote host is missing an update to libpng3
announced via advisory DSA 571-1.

Several integer overflows have been discovered by its upstream
developers in libpng, a commonly used library to display PNG graphics.
They could be exploited to cause arbitrary code to be executed when a
specially crafted PNG image is processed.

For the stable distribution (woody) these problems have been fixed in
version 1.2.1-1.1.woody.9.

For the unstable distribution (sid) these problems have been fixed in
version 1.2.5.0-9.

We recommend that you upgrade your libpng3 packages.

Solution:
http://www.securityspace.com/smysecure/catid.html?in=DSA%20571-1

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2004-0599
http://scary.beasts.org/security/CESA-2004-001.txt
http://lists.apple.com/mhonarc/security-announce/msg00056.html
Conectiva Linux advisory: CLA-2004:856
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000856
Debian Security Information: DSA-536 (Google Search)
http://www.debian.org/security/2004/dsa-536
Debian Security Information: DSA-570 (Google Search)
http://www.debian.org/security/2004/dsa-570
Debian Security Information: DSA-571 (Google Search)
http://www.debian.org/security/2004/dsa-571
https://bugzilla.fedora.us/show_bug.cgi?id=1943
http://marc.theaimsgroup.com/?l=bugtraq&m=109900315219363&w=2
http://www.gentoo.org/security/en/glsa/glsa-200408-03.xml
http://www.gentoo.org/security/en/glsa/glsa-200408-22.xml
HPdes Security Advisory: SSRT4778
http://marc.theaimsgroup.com/?l=bugtraq&m=109181639602978&w=2
http://www.mandriva.com/security/advisories?name=MDKSA-2004:079
http://www.mandriva.com/security/advisories?name=MDKSA-2006:212
http://www.mandriva.com/security/advisories?name=MDKSA-2006:213
http://www.redhat.com/support/errata/RHSA-2004-402.html
http://www.redhat.com/support/errata/RHSA-2004-421.html
http://www.redhat.com/support/errata/RHSA-2004-429.html
SCO Security Bulletin: SCOSA-2004.16
http://marc.theaimsgroup.com/?l=bugtraq&m=109761239318458&w=2
SCO Security Bulletin: SCOSA-2005.49
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200663-1
SuSE Security Announcement: SUSE-SA:2004:023 (Google Search)
http://www.novell.com/linux/security/advisories/2004_23_libpng.html
http://www.trustix.net/errata/2004/0040/
Bugtraq: 20040804 [OpenPKG-SA-2004.035] OpenPKG Security Advisory (png) (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=109163866717909&w=2
Cert/CC Advisory: TA04-217A
http://www.us-cert.gov/cas/techalerts/TA04-217A.html
CERT/CC vulnerability note: VU#160448
http://www.kb.cert.org/vuls/id/160448
CERT/CC vulnerability note: VU#286464
http://www.kb.cert.org/vuls/id/286464
CERT/CC vulnerability note: VU#477512
http://www.kb.cert.org/vuls/id/477512
BugTraq ID: 15495
http://www.securityfocus.com/bid/15495
BugTraq ID: 10857
http://www.securityfocus.com/bid/10857
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1479
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10938
http://secunia.com/advisories/22957
http://secunia.com/advisories/22958
XForce ISS Database: lilbpng-integer-bo(16896)
http://xforce.iss.net/xforce/xfdb/16896

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 32582 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

Registro de Nuevo Usuario
Email:

Usuario:

Contraseña:

Envíeme por email sus boletines mensuales, informándome los últimos servicios, mejoras y encuestas.

Por favor envíeme por email un anuncio de prueba de vulnerabilidades siempre que se agregue una nueva prueba.

Privacidad

Ingreso de Usuario Registrado

Usuario:

Contraseña:

¿Olvidó su usuario o contraseña??

Email/ID de Usario:

ID de Prueba:	1.3.6.1.4.1.25623.1.0.53262
Categoría:	Debian Local Security Checks
Título:	Debian Security Advisory DSA 571-1 (libpng3)
Resumen:	Debian Security Advisory DSA 571-1 (libpng3)
Descripción:	The remote host is missing an update to libpng3 announced via advisory DSA 571-1. Several integer overflows have been discovered by its upstream developers in libpng, a commonly used library to display PNG graphics. They could be exploited to cause arbitrary code to be executed when a specially crafted PNG image is processed. For the stable distribution (woody) these problems have been fixed in version 1.2.1-1.1.woody.9. For the unstable distribution (sid) these problems have been fixed in version 1.2.5.0-9. We recommend that you upgrade your libpng3 packages. Solution: http://www.securityspace.com/smysecure/catid.html?in=DSA%20571-1
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0599 http://scary.beasts.org/security/CESA-2004-001.txt http://lists.apple.com/mhonarc/security-announce/msg00056.html Conectiva Linux advisory: CLA-2004:856 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000856 Debian Security Information: DSA-536 (Google Search) http://www.debian.org/security/2004/dsa-536 Debian Security Information: DSA-570 (Google Search) http://www.debian.org/security/2004/dsa-570 Debian Security Information: DSA-571 (Google Search) http://www.debian.org/security/2004/dsa-571 https://bugzilla.fedora.us/show_bug.cgi?id=1943 http://marc.theaimsgroup.com/?l=bugtraq&m=109900315219363&w=2 http://www.gentoo.org/security/en/glsa/glsa-200408-03.xml http://www.gentoo.org/security/en/glsa/glsa-200408-22.xml HPdes Security Advisory: SSRT4778 http://marc.theaimsgroup.com/?l=bugtraq&m=109181639602978&w=2 http://www.mandriva.com/security/advisories?name=MDKSA-2004:079 http://www.mandriva.com/security/advisories?name=MDKSA-2006:212 http://www.mandriva.com/security/advisories?name=MDKSA-2006:213 http://www.redhat.com/support/errata/RHSA-2004-402.html http://www.redhat.com/support/errata/RHSA-2004-421.html http://www.redhat.com/support/errata/RHSA-2004-429.html SCO Security Bulletin: SCOSA-2004.16 http://marc.theaimsgroup.com/?l=bugtraq&m=109761239318458&w=2 SCO Security Bulletin: SCOSA-2005.49 ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt http://sunsolve.sun.com/search/document.do?assetkey=1-66-200663-1 SuSE Security Announcement: SUSE-SA:2004:023 (Google Search) http://www.novell.com/linux/security/advisories/2004_23_libpng.html http://www.trustix.net/errata/2004/0040/ Bugtraq: 20040804 [OpenPKG-SA-2004.035] OpenPKG Security Advisory (png) (Google Search) http://marc.theaimsgroup.com/?l=bugtraq&m=109163866717909&w=2 Cert/CC Advisory: TA04-217A http://www.us-cert.gov/cas/techalerts/TA04-217A.html CERT/CC vulnerability note: VU#160448 http://www.kb.cert.org/vuls/id/160448 CERT/CC vulnerability note: VU#286464 http://www.kb.cert.org/vuls/id/286464 CERT/CC vulnerability note: VU#477512 http://www.kb.cert.org/vuls/id/477512 BugTraq ID: 15495 http://www.securityfocus.com/bid/15495 BugTraq ID: 10857 http://www.securityfocus.com/bid/10857 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1479 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10938 http://secunia.com/advisories/22957 http://secunia.com/advisories/22958 XForce ISS Database: lilbpng-integer-bo(16896) http://xforce.iss.net/xforce/xfdb/16896
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com