Mandrake Local Security Checks : Mandriva Update for t1lib MDVSA-2012:002 (t1lib)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.831520

Categoría: Mandrake Local Security Checks

Título: Mandriva Update for t1lib MDVSA-2012:002 (t1lib)

Resumen: The remote host is missing an update for the 't1lib'; package(s) announced via the referenced advisory.

Descripción: Summary:
The remote host is missing an update for the 't1lib'
package(s) announced via the referenced advisory.

Vulnerability Insight:
A vulnerability has been found and corrected in t1lib:

t1lib 5.1.2 and earlier uses an invalid pointer in conjunction with
a dereference operation, which allows remote attackers to execute
arbitrary code via a specially crafted Type 1 font in a PDF document
(CVE-2011-0764).

The updated packages have been patched to correct this issue.

Affected Software/OS:
t1lib on Mandriva Linux 2011.0,
Mandriva Enterprise Server 5.2,
Mandriva Linux 2010.1

Solution:
Please Install the Updated Packages.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2011-0764
BugTraq ID: 46941
http://www.securityfocus.com/bid/46941
Bugtraq: 20110327 TSSA-2011-01 xpdf : multiple vulnerabilities allow remote code execution (Google Search)
http://www.securityfocus.com/archive/1/517205/100/0/threaded
CERT/CC vulnerability note: VU#376500
http://www.kb.cert.org/vuls/id/376500
https://security.gentoo.org/glsa/201701-57
http://www.mandriva.com/security/advisories?name=MDVSA-2012:002
http://www.mandriva.com/security/advisories?name=MDVSA-2012:144
http://www.toucan-system.com/advisories/tssa-2011-01.txt
RedHat Security Advisories: RHSA-2012:1201
http://rhn.redhat.com/errata/RHSA-2012-1201.html
http://securitytracker.com/id?1025266
http://secunia.com/advisories/43823
http://secunia.com/advisories/47347
http://secunia.com/advisories/48985
http://securityreason.com/securityalert/8171
http://www.ubuntu.com/usn/USN-1316-1
http://www.vupen.com/english/advisories/2011/0728
XForce ISS Database: xpdf-t1lib-code-execution(66208)
https://exchange.xforce.ibmcloud.com/vulnerabilities/66208

Copyright Copyright (c) 2012 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.831520
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Update for t1lib MDVSA-2012:002 (t1lib)
Resumen:	The remote host is missing an update for the 't1lib'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 't1lib' package(s) announced via the referenced advisory. Vulnerability Insight: A vulnerability has been found and corrected in t1lib: t1lib 5.1.2 and earlier uses an invalid pointer in conjunction with a dereference operation, which allows remote attackers to execute arbitrary code via a specially crafted Type 1 font in a PDF document (CVE-2011-0764). The updated packages have been patched to correct this issue. Affected Software/OS: t1lib on Mandriva Linux 2011.0, Mandriva Enterprise Server 5.2, Mandriva Linux 2010.1 Solution: Please Install the Updated Packages. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0764 BugTraq ID: 46941 http://www.securityfocus.com/bid/46941 Bugtraq: 20110327 TSSA-2011-01 xpdf : multiple vulnerabilities allow remote code execution (Google Search) http://www.securityfocus.com/archive/1/517205/100/0/threaded CERT/CC vulnerability note: VU#376500 http://www.kb.cert.org/vuls/id/376500 https://security.gentoo.org/glsa/201701-57 http://www.mandriva.com/security/advisories?name=MDVSA-2012:002 http://www.mandriva.com/security/advisories?name=MDVSA-2012:144 http://www.toucan-system.com/advisories/tssa-2011-01.txt RedHat Security Advisories: RHSA-2012:1201 http://rhn.redhat.com/errata/RHSA-2012-1201.html http://securitytracker.com/id?1025266 http://secunia.com/advisories/43823 http://secunia.com/advisories/47347 http://secunia.com/advisories/48985 http://securityreason.com/securityalert/8171 http://www.ubuntu.com/usn/USN-1316-1 http://www.vupen.com/english/advisories/2011/0728 XForce ISS Database: xpdf-t1lib-code-execution(66208) https://exchange.xforce.ibmcloud.com/vulnerabilities/66208
Copyright	Copyright (c) 2012 Greenbone Networks GmbH