Test ID:	1.3.6.1.4.1.25623.1.1.10.2014.0241
Category:	Mageia Linux Local Security Checks
Title:	Mageia: Security Advisory (MGASA-2014-0241)
Summary:	The remote host is missing an update for the 'qt4, qtbase5' package(s) announced via the MGASA-2014-0241 advisory.
Description:	Summary: The remote host is missing an update for the 'qt4, qtbase5' package(s) announced via the MGASA-2014-0241 advisory. Vulnerability Insight: A NULL pointer dereference flaw was found in QGIFFormat::fillRect in QtGui. If an application using the qt-x11 libraries opened a malicious GIF file with invalid width and height values, it could cause the application to crash (CVE-2014-0190). Qt4 has been patched to correct this flaw and has been updated to version 4.8.6, which fixes several other bugs. Qtbase5 has also been patched to correct this flaw. Affected Software/OS: 'qt4, qtbase5' package(s) on Mageia 4. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-0190 67087 http://www.securityfocus.com/bid/67087 FEDORA-2014-5695 http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132395.html FEDORA-2014-6896 http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134141.html FEDORA-2014-6922 http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134040.html USN-2626-1 http://www.ubuntu.com/usn/USN-2626-1 [Announce] 20140424 Qt Security Advisory: DoS vulnerability in the GIF image handler http://lists.qt-project.org/pipermail/announce/2014-April/000045.html https://bugs.kde.org/show_bug.cgi?id=333404 openSUSE-SU-2015:0573 http://lists.opensuse.org/opensuse-updates/2015-03/msg00068.html
Copyright	Copyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.