Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200607-03 (tiff)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.57119

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200607-03 (tiff)

Resumen: The remote host is missing updates announced in;advisory GLSA 200607-03.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200607-03.

Vulnerability Insight:
libTIFF contains buffer overflows that could result in arbitrary code
execution.

Solution:
All libTIFF users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=media-libs/tiff-3.8.2-r1'

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2006-2193
BugTraq ID: 18331
http://www.securityfocus.com/bid/18331
Debian Security Information: DSA-1091 (Google Search)
http://www.debian.org/security/2006/dsa-1091
http://security.gentoo.org/glsa/glsa-200607-03.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2006:102
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9788
http://www.redhat.com/support/errata/RHSA-2008-0848.html
http://secunia.com/advisories/20488
http://secunia.com/advisories/20501
http://secunia.com/advisories/20520
http://secunia.com/advisories/20693
http://secunia.com/advisories/20766
http://secunia.com/advisories/21002
http://secunia.com/advisories/27181
http://secunia.com/advisories/27222
http://secunia.com/advisories/27832
http://secunia.com/advisories/31670
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103160-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201331-1
SuSE Security Announcement: SUSE-SR:2006:014 (Google Search)
http://lists.suse.com/archive/suse-security-announce/2006-Jun/0008.html
https://usn.ubuntu.com/289-1/
http://www.vupen.com/english/advisories/2006/2197
http://www.vupen.com/english/advisories/2007/3486
http://www.vupen.com/english/advisories/2007/4034
XForce ISS Database: libtiff-tiff2pdf-bo(26991)
https://exchange.xforce.ibmcloud.com/vulnerabilities/26991
Common Vulnerability Exposure (CVE) ID: CVE-2006-2656
20060524 tiffsplit (libtiff <= 3.8.2) bss & stack buffer overflow...
http://marc.info/?l=vuln-dev&m=114857412916909&w=2
20501
20520
20766
21002
DSA-1091
FEDORA-2006-591
https://www.redhat.com/archives/fedora-package-announce/2006-May/msg00127.html
GLSA-200607-03
MDKSA-2006:095
http://www.mandriva.com/security/advisories?name=MDKSA-2006:095
SUSE-SR:2006:014
USN-289-1

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.57119
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200607-03 (tiff)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200607-03.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200607-03. Vulnerability Insight: libTIFF contains buffer overflows that could result in arbitrary code execution. Solution: All libTIFF users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=media-libs/tiff-3.8.2-r1' CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-2193 BugTraq ID: 18331 http://www.securityfocus.com/bid/18331 Debian Security Information: DSA-1091 (Google Search) http://www.debian.org/security/2006/dsa-1091 http://security.gentoo.org/glsa/glsa-200607-03.xml http://www.mandriva.com/security/advisories?name=MDKSA-2006:102 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9788 http://www.redhat.com/support/errata/RHSA-2008-0848.html http://secunia.com/advisories/20488 http://secunia.com/advisories/20501 http://secunia.com/advisories/20520 http://secunia.com/advisories/20693 http://secunia.com/advisories/20766 http://secunia.com/advisories/21002 http://secunia.com/advisories/27181 http://secunia.com/advisories/27222 http://secunia.com/advisories/27832 http://secunia.com/advisories/31670 http://sunsolve.sun.com/search/document.do?assetkey=1-26-103160-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-201331-1 SuSE Security Announcement: SUSE-SR:2006:014 (Google Search) http://lists.suse.com/archive/suse-security-announce/2006-Jun/0008.html https://usn.ubuntu.com/289-1/ http://www.vupen.com/english/advisories/2006/2197 http://www.vupen.com/english/advisories/2007/3486 http://www.vupen.com/english/advisories/2007/4034 XForce ISS Database: libtiff-tiff2pdf-bo(26991) https://exchange.xforce.ibmcloud.com/vulnerabilities/26991 Common Vulnerability Exposure (CVE) ID: CVE-2006-2656 20060524 tiffsplit (libtiff <= 3.8.2) bss & stack buffer overflow... http://marc.info/?l=vuln-dev&m=114857412916909&w=2 20501 20520 20766 21002 DSA-1091 FEDORA-2006-591 https://www.redhat.com/archives/fedora-package-announce/2006-May/msg00127.html GLSA-200607-03 MDKSA-2006:095 http://www.mandriva.com/security/advisories?name=MDKSA-2006:095 SUSE-SR:2006:014 USN-289-1
Copyright	Copyright (C) 2008 E-Soft Inc.