ID de Prueba:	1.3.6.1.4.1.25623.1.0.66518
Categoría:	Slackware Local Security Checks
Título:	Slackware: Security Advisory (SSA:2009-345-01)
Resumen:	The remote host is missing an update for the 'gimp' package(s) announced via the SSA:2009-345-01 advisory.
Descripción:	Summary: The remote host is missing an update for the 'gimp' package(s) announced via the SSA:2009-345-01 advisory. Vulnerability Insight: New gimp packages are available for Slackware 12.1, 12.2, 13.0, and -current to fix security issues. More details about these issues may be found in the Common Vulnerabilities and Exposures (CVE) database: [links moved to references] Here are the details from the Slackware 13.0 ChangeLog: +--------------------------+ patches/packages/gimp-2.6.8-i486-1_slack13.0.txz: Upgraded. This fixes integer overflows in the image handling plugins that could lead to the execution of arbitrary code or an application crash if a malicious image is loaded. For more information, see: [links moved to references] (* Security fix *) +--------------------------+ Affected Software/OS: 'gimp' package(s) on Slackware 12.1, Slackware 12.2, Slackware 13.0, Slackware current. Solution: Please install the updated package(s). CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1570 BugTraq ID: 37006 http://www.securityfocus.com/bid/37006 Bugtraq: 20091112 Secunia Research: Gimp BMP Image Parsing Integer Overflow Vulnerability (Google Search) http://www.securityfocus.com/archive/1/507813/100/0/threaded http://security.gentoo.org/glsa/glsa-201209-23.xml http://secunia.com/secunia_research/2009-42/ https://bugzilla.gnome.org/show_bug.cgi?id=600484 http://www.osvdb.org/59930 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8290 http://www.redhat.com/support/errata/RHSA-2011-0837.html http://www.redhat.com/support/errata/RHSA-2011-0838.html http://secunia.com/advisories/37232 http://secunia.com/advisories/50737 SuSE Security Announcement: SUSE-SR:2010:009 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00002.html http://www.vupen.com/english/advisories/2009/3228 http://www.vupen.com/english/advisories/2009/3564 http://www.vupen.com/english/advisories/2010/1021 XForce ISS Database: gimp-readimage-bo(54254) https://exchange.xforce.ibmcloud.com/vulnerabilities/54254 Common Vulnerability Exposure (CVE) ID: CVE-2009-3909 BugTraq ID: 37040 http://www.securityfocus.com/bid/37040 Bugtraq: 20091117 Secunia Research: Gimp PSD Image Parsing Integer Overflow Vulnerability (Google Search) http://www.securityfocus.com/archive/1/507928/100/0/threaded Debian Security Information: DSA-1941 (Google Search) http://www.debian.org/security/2009/dsa-1941 http://www.mandriva.com/security/advisories?name=MDVSA-2009:332 http://secunia.com/secunia_research/2009-43/ https://bugzilla.gnome.org/show_bug.cgi?id=600741 http://osvdb.org/60178 RedHat Security Advisories: RHSA-2012:1181 http://rhn.redhat.com/errata/RHSA-2012-1181.html http://secunia.com/advisories/37348 http://www.vupen.com/english/advisories/2009/3270
Copyright	Copyright (C) 2012 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.