ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2017.0357
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2017-0357)
Resumen:	The remote host is missing an update for the 'libraw' package(s) announced via the MGASA-2017-0357 advisory.
Descripción:	Summary: The remote host is missing an update for the 'libraw' package(s) announced via the MGASA-2017-0357 advisory. Vulnerability Insight: There is a floating point exception in the kodak_radc_load_raw function in dcraw_common.cpp in LibRaw 0.18.2. It will lead to a remote denial of service attack. (CVE-2017-13735) A Stack-based Buffer Overflow was discovered in xtrans_interpolate in internal/dcraw_common.cpp in LibRaw before 0.18.3. It could allow a remote denial of service or code execution attack. (CVE-2017-14265) LibRaw before 0.18.4 has a heap-based Buffer Overflow in the processCanonCameraInfo function via a crafted file. (CVE-2017-14348) Affected Software/OS: 'libraw' package(s) on Mageia 5, Mageia 6. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-13735 https://bugzilla.redhat.com/show_bug.cgi?id=1483988 Common Vulnerability Exposure (CVE) ID: CVE-2017-14265 Common Vulnerability Exposure (CVE) ID: CVE-2017-14348 BugTraq ID: 100866 http://www.securityfocus.com/bid/100866
Copyright	Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.