Mandrake Local Security Checks : Mandriva Update for gimp MDVSA-2011:110 (gimp)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.831419

Categoría: Mandrake Local Security Checks

Título: Mandriva Update for gimp MDVSA-2011:110 (gimp)

Resumen: The remote host is missing an update for the 'gimp'; package(s) announced via the referenced advisory.

Descripción: Summary:
The remote host is missing an update for the 'gimp'
package(s) announced via the referenced advisory.

Vulnerability Insight:
A vulnerability was discovered and corrected in gimp:

Multiple integer overflows in the load_image function in file-pcx.c in
the Personal Computer Exchange (PCX) plugin in GIMP 2.6.x and earlier
allow remote attackers to cause a denial of service (application
crash) or possibly execute arbitrary code via a crafted PCX image
that triggers a heap-based buffer overflow (CVE-2011-1178).

Packages for 2009.0 are provided as of the Extended Maintenance
Program. The updated packages have been patched to correct this issue.

Affected Software/OS:
gimp on Mandriva Linux 2009.0,
Mandriva Linux 2009.0/X86_64,
Mandriva Enterprise Server 5,
Mandriva Enterprise Server 5/X86_64

Solution:
Please Install the Updated Packages.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2011-1178
1025586
http://securitytracker.com/id?1025586
48057
http://www.securityfocus.com/bid/48057
50737
http://secunia.com/advisories/50737
GLSA-201209-23
http://security.gentoo.org/glsa/glsa-201209-23.xml
MDVSA-2011:110
http://www.mandriva.com/security/advisories?name=MDVSA-2011:110
RHSA-2011:0837
http://www.redhat.com/support/errata/RHSA-2011-0837.html
RHSA-2011:0838
http://www.redhat.com/support/errata/RHSA-2011-0838.html
gimp-pcximage-bo(67787)
https://exchange.xforce.ibmcloud.com/vulnerabilities/67787
http://git.gnome.org/browse/gimp/commit/?id=a9671395f6573e90316a9d748588c5435216f6ce
https://bugzilla.redhat.com/show_bug.cgi?id=689831

Copyright Copyright (C) 2011 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.831419
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Update for gimp MDVSA-2011:110 (gimp)
Resumen:	The remote host is missing an update for the 'gimp'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'gimp' package(s) announced via the referenced advisory. Vulnerability Insight: A vulnerability was discovered and corrected in gimp: Multiple integer overflows in the load_image function in file-pcx.c in the Personal Computer Exchange (PCX) plugin in GIMP 2.6.x and earlier allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PCX image that triggers a heap-based buffer overflow (CVE-2011-1178). Packages for 2009.0 are provided as of the Extended Maintenance Program. The updated packages have been patched to correct this issue. Affected Software/OS: gimp on Mandriva Linux 2009.0, Mandriva Linux 2009.0/X86_64, Mandriva Enterprise Server 5, Mandriva Enterprise Server 5/X86_64 Solution: Please Install the Updated Packages. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1178 1025586 http://securitytracker.com/id?1025586 48057 http://www.securityfocus.com/bid/48057 50737 http://secunia.com/advisories/50737 GLSA-201209-23 http://security.gentoo.org/glsa/glsa-201209-23.xml MDVSA-2011:110 http://www.mandriva.com/security/advisories?name=MDVSA-2011:110 RHSA-2011:0837 http://www.redhat.com/support/errata/RHSA-2011-0837.html RHSA-2011:0838 http://www.redhat.com/support/errata/RHSA-2011-0838.html gimp-pcximage-bo(67787) https://exchange.xforce.ibmcloud.com/vulnerabilities/67787 http://git.gnome.org/browse/gimp/commit/?id=a9671395f6573e90316a9d748588c5435216f6ce https://bugzilla.redhat.com/show_bug.cgi?id=689831
Copyright	Copyright (C) 2011 Greenbone AG