Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200906-01 (libpng)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.64313

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200906-01 (libpng)

Resumen: NOSUMMARY

Descripción: Description:
The remote host is missing updates announced in
advisory GLSA 200906-01.

A vulnerability has been discovered in libpng that allows for information
disclosure.

Solution:
All libpng users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=media-libs/libpng-1.2.37'

http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200906-01
http://bugs.gentoo.org/show_bug.cgi?id=272970

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:N/A:N

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-2042
http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html
BugTraq ID: 35233
http://www.securityfocus.com/bid/35233
Bugtraq: 20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues (Google Search)
http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html
Debian Security Information: DSA-2032 (Google Search)
http://www.debian.org/security/2010/dsa-2032
https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00218.html
https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00630.html
http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html
http://security.gentoo.org/glsa/glsa-200906-01.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2010:063
http://lists.vmware.com/pipermail/security-announce/2010/000090.html
http://secunia.com/advisories/35346
http://secunia.com/advisories/35470
http://secunia.com/advisories/35524
http://secunia.com/advisories/35594
http://secunia.com/advisories/39206
http://secunia.com/advisories/39215
http://secunia.com/advisories/39251
http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.551809
http://ubuntu.com/usn/usn-913-1
http://www.vupen.com/english/advisories/2009/1510
http://www.vupen.com/english/advisories/2010/0637
http://www.vupen.com/english/advisories/2010/0682
http://www.vupen.com/english/advisories/2010/0847
XForce ISS Database: libpng-interlaced-image-info-disclosure(50966)
https://exchange.xforce.ibmcloud.com/vulnerabilities/50966

Copyright Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.64313
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200906-01 (libpng)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory GLSA 200906-01. A vulnerability has been discovered in libpng that allows for information disclosure. Solution: All libpng users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=media-libs/libpng-1.2.37' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200906-01 http://bugs.gentoo.org/show_bug.cgi?id=272970 CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-2042 http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html BugTraq ID: 35233 http://www.securityfocus.com/bid/35233 Bugtraq: 20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues (Google Search) http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html Debian Security Information: DSA-2032 (Google Search) http://www.debian.org/security/2010/dsa-2032 https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00218.html https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00630.html http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html http://security.gentoo.org/glsa/glsa-200906-01.xml http://www.mandriva.com/security/advisories?name=MDVSA-2010:063 http://lists.vmware.com/pipermail/security-announce/2010/000090.html http://secunia.com/advisories/35346 http://secunia.com/advisories/35470 http://secunia.com/advisories/35524 http://secunia.com/advisories/35594 http://secunia.com/advisories/39206 http://secunia.com/advisories/39215 http://secunia.com/advisories/39251 http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.551809 http://ubuntu.com/usn/usn-913-1 http://www.vupen.com/english/advisories/2009/1510 http://www.vupen.com/english/advisories/2010/0637 http://www.vupen.com/english/advisories/2010/0682 http://www.vupen.com/english/advisories/2010/0847 XForce ISS Database: libpng-interlaced-image-info-disclosure(50966) https://exchange.xforce.ibmcloud.com/vulnerabilities/50966
Copyright	Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com