ID de Prueba:	1.3.6.1.4.1.25623.1.0.61068
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2008:0498
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2008:0498. The Common UNIX Printing System (CUPS) provides a portable printing layer for UNIX operating systems. An integer overflow flaw leading to a heap buffer overflow was discovered in the Portable Network Graphics (PNG) decoding routines used by the CUPS image converting filters imagetops and imagetoraster. An attacker could create a malicious PNG file that could possibly execute arbitrary code as the lp user if the file was printed. (CVE-2008-1722) All CUPS users are advised to upgrade to these updated packages, which contain backported patch to resolve this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2008-0498.html http://www.redhat.com/security/updates/classification/#moderate Risk factor : Medium CVSS Score: 4.3
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-1722 BugTraq ID: 28781 http://www.securityfocus.com/bid/28781 CERT/CC vulnerability note: VU#218395 http://www.kb.cert.org/vuls/id/218395 Debian Security Information: DSA-1625 (Google Search) http://www.debian.org/security/2008/dsa-1625 https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00081.html https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00068.html http://www.gentoo.org/security/en/glsa/glsa-200804-23.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:170 http://www.osvdb.org/44398 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8768 RedHat Security Advisories: RHSA-2008:0498 https://rhn.redhat.com/errata/RHSA-2008-0498.html http://www.securitytracker.com/id?1019854 http://secunia.com/advisories/29809 http://secunia.com/advisories/29902 http://secunia.com/advisories/30078 http://secunia.com/advisories/30190 http://secunia.com/advisories/30553 http://secunia.com/advisories/30717 http://secunia.com/advisories/31324 http://secunia.com/advisories/32292 SuSE Security Announcement: SUSE-SR:2008:013 (Google Search) http://www.novell.com/linux/security/advisories/2008_13_sr.html http://www.ubuntu.com/usn/usn-606-1 https://usn.ubuntu.com/656-1/ http://www.vupen.com/english/advisories/2008/1226/references XForce ISS Database: cups-imagepng-imagezoom-bo(41832) https://exchange.xforce.ibmcloud.com/vulnerabilities/41832
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.