ID de Prueba:	1.3.6.1.4.1.25623.1.0.60746
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2008:0238
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2008:0238. The kdegraphics packages contain applications for the K Desktop Environment, including kpdf, a PDF file viewer. Kees Cook discovered a flaw in the way kpdf displayed malformed fonts embedded in PDF files. An attacker could create a malicious PDF file that would cause kpdf to crash, or, potentially, execute arbitrary code when opened. (CVE-2008-1693) All kdegraphics users are advised to upgrade to these updated packages, which contain backported patches to resolve this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2008-0238.html http://www.redhat.com/security/updates/classification/#important Risk factor : High CVSS Score: 6.8
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-1693 BugTraq ID: 28830 http://www.securityfocus.com/bid/28830 Debian Security Information: DSA-1548 (Google Search) http://www.debian.org/security/2008/dsa-1548 Debian Security Information: DSA-1606 (Google Search) http://www.debian.org/security/2008/dsa-1606 https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00522.html http://security.gentoo.org/glsa/glsa-200804-18.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:089 http://www.mandriva.com/security/advisories?name=MDVSA-2008:173 http://www.mandriva.com/security/advisories?name=MDVSA-2008:197 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11226 http://www.redhat.com/support/errata/RHSA-2008-0238.html http://www.redhat.com/support/errata/RHSA-2008-0239.html http://www.redhat.com/support/errata/RHSA-2008-0240.html http://www.redhat.com/support/errata/RHSA-2008-0262.html http://securitytracker.com/id?1019893 http://secunia.com/advisories/29816 http://secunia.com/advisories/29834 http://secunia.com/advisories/29836 http://secunia.com/advisories/29851 http://secunia.com/advisories/29853 http://secunia.com/advisories/29868 http://secunia.com/advisories/29869 http://secunia.com/advisories/29884 http://secunia.com/advisories/29885 http://secunia.com/advisories/30019 http://secunia.com/advisories/30033 http://secunia.com/advisories/30717 http://secunia.com/advisories/31035 SuSE Security Announcement: SUSE-SR:2008:011 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-05/msg00000.html SuSE Security Announcement: SUSE-SR:2008:013 (Google Search) http://www.novell.com/linux/security/advisories/2008_13_sr.html http://www.ubuntu.com/usn/usn-603-1 http://www.ubuntu.com/usn/usn-603-2 http://www.vupen.com/english/advisories/2008/1265/references http://www.vupen.com/english/advisories/2008/1266/references XForce ISS Database: xpdf-pdf-code-execution(41884) https://exchange.xforce.ibmcloud.com/vulnerabilities/41884
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.