Slackware Local Security Checks : Slackware: Security Advisory (SSA:2017-324-01)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.13.2017.324.01

Categoría: Slackware Local Security Checks

Título: Slackware: Security Advisory (SSA:2017-324-01)

Resumen: The remote host is missing an update for the 'libtiff' package(s) announced via the SSA:2017-324-01 advisory.

Descripción: Summary:
The remote host is missing an update for the 'libtiff' package(s) announced via the SSA:2017-324-01 advisory.

Vulnerability Insight:
New libtiff packages are available for Slackware 14.2 and -current to
fix security issues.

Here are the details from the Slackware 14.2 ChangeLog:
+--------------------------+
patches/packages/libtiff-4.0.9-i586-1_slack14.2.txz: Upgraded.
This release contains security fixes and improvements.
For more information, see:
[links moved to references]
(* Security fix *)
+--------------------------+

Affected Software/OS:
'libtiff' package(s) on Slackware 14.2, Slackware current.

Solution:
Please install the updated package(s).

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2014-8128
http://lists.apple.com/archives/security-announce/2015/Jun/msg00001.html
http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html
http://openwall.com/lists/oss-security/2015/01/24/15
http://support.apple.com/kb/HT204941
http://support.apple.com/kb/HT204942
http://www.conostix.com/pub/adv/CVE-2014-8128-LibTIFF-Out-of-bounds_Writes.txt
https://bugzilla.redhat.com/show_bug.cgi?id=1185812
Common Vulnerability Exposure (CVE) ID: CVE-2016-10095
BugTraq ID: 95178
http://www.securityfocus.com/bid/95178
Debian Security Information: DSA-3903 (Google Search)
http://www.debian.org/security/2017/dsa-3903
https://blogs.gentoo.org/ago/2017/01/01/libtiff-stack-based-buffer-overflow-in-_tiffvgetfield-tif_dir-c/
http://www.openwall.com/lists/oss-security/2017/01/01/11
http://www.openwall.com/lists/oss-security/2017/01/01/7
Common Vulnerability Exposure (CVE) ID: CVE-2016-5318
BugTraq ID: 88604
http://www.securityfocus.com/bid/88604
https://security.gentoo.org/glsa/201701-16
http://www.openwall.com/lists/oss-security/2016/04/27/6
http://www.openwall.com/lists/oss-security/2016/06/07/1
https://usn.ubuntu.com/3606-1/

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.13.2017.324.01
Categoría:	Slackware Local Security Checks
Título:	Slackware: Security Advisory (SSA:2017-324-01)
Resumen:	The remote host is missing an update for the 'libtiff' package(s) announced via the SSA:2017-324-01 advisory.
Descripción:	Summary: The remote host is missing an update for the 'libtiff' package(s) announced via the SSA:2017-324-01 advisory. Vulnerability Insight: New libtiff packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: +--------------------------+ patches/packages/libtiff-4.0.9-i586-1_slack14.2.txz: Upgraded. This release contains security fixes and improvements. For more information, see: [links moved to references] (* Security fix *) +--------------------------+ Affected Software/OS: 'libtiff' package(s) on Slackware 14.2, Slackware current. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-8128 http://lists.apple.com/archives/security-announce/2015/Jun/msg00001.html http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html http://openwall.com/lists/oss-security/2015/01/24/15 http://support.apple.com/kb/HT204941 http://support.apple.com/kb/HT204942 http://www.conostix.com/pub/adv/CVE-2014-8128-LibTIFF-Out-of-bounds_Writes.txt https://bugzilla.redhat.com/show_bug.cgi?id=1185812 Common Vulnerability Exposure (CVE) ID: CVE-2016-10095 BugTraq ID: 95178 http://www.securityfocus.com/bid/95178 Debian Security Information: DSA-3903 (Google Search) http://www.debian.org/security/2017/dsa-3903 https://blogs.gentoo.org/ago/2017/01/01/libtiff-stack-based-buffer-overflow-in-_tiffvgetfield-tif_dir-c/ http://www.openwall.com/lists/oss-security/2017/01/01/11 http://www.openwall.com/lists/oss-security/2017/01/01/7 Common Vulnerability Exposure (CVE) ID: CVE-2016-5318 BugTraq ID: 88604 http://www.securityfocus.com/bid/88604 https://security.gentoo.org/glsa/201701-16 http://www.openwall.com/lists/oss-security/2016/04/27/6 http://www.openwall.com/lists/oss-security/2016/06/07/1 https://usn.ubuntu.com/3606-1/
Copyright	Copyright (C) 2022 Greenbone AG