Test ID:	1.3.6.1.4.1.25623.1.1.10.2015.0112
Category:	Mageia Linux Local Security Checks
Title:	Mageia: Security Advisory (MGASA-2015-0112)
Summary:	The remote host is missing an update for the 'libtiff' package(s) announced via the MGASA-2015-0112 advisory.
Description:	Summary: The remote host is missing an update for the 'libtiff' package(s) announced via the MGASA-2015-0112 advisory. Vulnerability Insight: The libtiff image decoder library contains several issues that could cause the decoder to crash when reading crafted TIFF images (CVE-2014-8127, CVE-2014-8128, CVE-2014-8129, CVE-2014-8130, CVE-2014-9655, CVE-2015-1547). Affected Software/OS: 'libtiff' package(s) on Mageia 4. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-8127 1032760 http://www.securitytracker.com/id/1032760 72323 http://www.securityfocus.com/bid/72323 DSA-3273 http://www.debian.org/security/2015/dsa-3273 GLSA-201701-16 https://security.gentoo.org/glsa/201701-16 RHSA-2016:1546 http://rhn.redhat.com/errata/RHSA-2016-1546.html RHSA-2016:1547 http://rhn.redhat.com/errata/RHSA-2016-1547.html [oss-security] 20150124 Multiple vulnerabilities in LibTIFF and associated tools http://www.openwall.com/lists/oss-security/2015/01/24/15 http://bugzilla.maptools.org/show_bug.cgi?id=2484 http://bugzilla.maptools.org/show_bug.cgi?id=2485 http://bugzilla.maptools.org/show_bug.cgi?id=2486 http://bugzilla.maptools.org/show_bug.cgi?id=2496 http://bugzilla.maptools.org/show_bug.cgi?id=2497 http://bugzilla.maptools.org/show_bug.cgi?id=2500 http://www.conostix.com/pub/adv/CVE-2014-8127-LibTIFF-Out-of-bounds_Reads.txt openSUSE-SU-2015:0450 http://lists.opensuse.org/opensuse-updates/2015-03/msg00022.html Common Vulnerability Exposure (CVE) ID: CVE-2014-8128 http://lists.apple.com/archives/security-announce/2015/Jun/msg00001.html http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html http://openwall.com/lists/oss-security/2015/01/24/15 http://support.apple.com/kb/HT204941 http://support.apple.com/kb/HT204942 http://www.conostix.com/pub/adv/CVE-2014-8128-LibTIFF-Out-of-bounds_Writes.txt https://bugzilla.redhat.com/show_bug.cgi?id=1185812 Common Vulnerability Exposure (CVE) ID: CVE-2014-8129 72352 http://www.securityfocus.com/bid/72352 APPLE-SA-2015-06-30-1 APPLE-SA-2015-06-30-2 https://www.debian.org/security/2015/dsa-3273 http://bugzilla.maptools.org/show_bug.cgi?id=2487 http://bugzilla.maptools.org/show_bug.cgi?id=2488 http://www.conostix.com/pub/adv/CVE-2014-8129-LibTIFF-Out-of-bounds_Reads_and_Writes.txt https://bugzilla.redhat.com/show_bug.cgi?id=1185815 Common Vulnerability Exposure (CVE) ID: CVE-2014-8130 72353 http://www.securityfocus.com/bid/72353 http://bugzilla.maptools.org/show_bug.cgi?id=2483 http://www.conostix.com/pub/adv/CVE-2014-8130-LibTIFF-Division_By_Zero.txt https://bugzilla.redhat.com/show_bug.cgi?id=1185817 https://github.com/vadz/libtiff/commit/3c5eb8b1be544e41d2c336191bc4936300ad7543 Common Vulnerability Exposure (CVE) ID: CVE-2014-9655 Debian Security Information: DSA-3273 (Google Search) Debian Security Information: DSA-3467 (Google Search) http://www.debian.org/security/2016/dsa-3467 http://openwall.com/lists/oss-security/2015/02/07/5 RedHat Security Advisories: RHSA-2016:1546 RedHat Security Advisories: RHSA-2016:1547 Common Vulnerability Exposure (CVE) ID: CVE-2015-1547 BugTraq ID: 73438 http://www.securityfocus.com/bid/73438 http://openwall.com/lists/oss-security/2015/01/24/16
Copyright	Copyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.