ID de Prueba:	1.3.6.1.4.1.25623.1.0.831747
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Update for graphicsmagick MDVSA-2012:165 (graphicsmagick)
Resumen:	The remote host is missing an update for the 'graphicsmagick'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'graphicsmagick' package(s) announced via the referenced advisory. Vulnerability Insight: A vulnerability has been found and corrected in graphicsmagick: The Magick_png_malloc function in coders/png.c in GraphicsMagick 6.7.8-6 does not use the proper variable type for the allocation size, which might allow remote attackers to cause a denial of service (crash) via a crafted PNG file that triggers incorrect memory allocation (CVE-2012-3438). The updated packages have been patched to correct this issue. Affected Software/OS: graphicsmagick on Mandriva Linux 2011.0, Mandriva Enterprise Server 5.2 Solution: Please Install the Updated Packages. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-3438 50090 http://secunia.com/advisories/50090 54716 http://www.securityfocus.com/bid/54716 MDVSA-2012:165 http://www.mandriva.com/security/advisories?name=MDVSA-2012:165 graphicsmagick-png-dos(77259) https://exchange.xforce.ibmcloud.com/vulnerabilities/77259 http://graphicsmagick.hg.sourceforge.net/hgweb/graphicsmagick/graphicsmagick/rev/d6e469d02cd2 https://bugzilla.redhat.com/show_bug.cgi?id=844105 openSUSE-SU-2013:0536 http://lists.opensuse.org/opensuse-updates/2013-03/msg00102.html
Copyright	Copyright (C) 2012 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.