Vulnerability   
Search   
    Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.1.10.2018.0332
Category:Mageia Linux Local Security Checks
Title:Mageia: Security Advisory (MGASA-2018-0332)
Summary:The remote host is missing an update for the 'blender, yafaray' package(s) announced via the MGASA-2018-0332 advisory.
Description:Summary:
The remote host is missing an update for the 'blender, yafaray' package(s) announced via the MGASA-2018-0332 advisory.

Vulnerability Insight:
Updated blender package fixes security vulnerabilities:

Multiple vulnerabilities have been discovered in various parsers of Blender.
Malformed .blend model files and malformed multimedia files (AVI, BMP, HDR,
CIN, IRIS, PNG, TIFF) may result in the execution of arbitrary code
(CVE-2017-2899, CVE-2017-2900, CVE-2017-2901, CVE-2017-2902, CVE-2017-2903,
CVE-2017-2904, CVE-2017-2905, CVE-2017-2906, CVE-2017-2907, CVE-2017-2908,
CVE-2017-2918, CVE-2017-12081, CVE-2017-12082, CVE-2017-12086,
CVE-2017-12099, CVE-2017-12100, CVE-2017-12101, CVE-2017-12102,
CVE-2017-12103, CVE-2017-12104, CVE-2017-12105).

These issues are fixed by updating to the latest upstream 2.79b release,
which brings many improvements, bug fixes and new features. See the
referenced changelog for details.

Also, the yafaray package has been updated to the latest version, 3.3.0, to
make it work with the new Blender addons path.

Affected Software/OS:
'blender, yafaray' package(s) on Mageia 6.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2017-12081
Debian Security Information: DSA-4248 (Google Search)
https://www.debian.org/security/2018/dsa-4248
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0433
https://lists.debian.org/debian-lts-announce/2018/08/msg00011.html
Common Vulnerability Exposure (CVE) ID: CVE-2017-12082
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0434
Common Vulnerability Exposure (CVE) ID: CVE-2017-12086
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0438
Common Vulnerability Exposure (CVE) ID: CVE-2017-12099
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0451
Common Vulnerability Exposure (CVE) ID: CVE-2017-12100
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0452
Common Vulnerability Exposure (CVE) ID: CVE-2017-12101
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0453
Common Vulnerability Exposure (CVE) ID: CVE-2017-12102
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0454
Common Vulnerability Exposure (CVE) ID: CVE-2017-12103
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0455
Common Vulnerability Exposure (CVE) ID: CVE-2017-12104
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0456
Common Vulnerability Exposure (CVE) ID: CVE-2017-12105
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0457
Common Vulnerability Exposure (CVE) ID: CVE-2017-2899
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0406
Common Vulnerability Exposure (CVE) ID: CVE-2017-2900
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0407
Common Vulnerability Exposure (CVE) ID: CVE-2017-2901
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0408
Common Vulnerability Exposure (CVE) ID: CVE-2017-2902
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0409
Common Vulnerability Exposure (CVE) ID: CVE-2017-2903
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0410
Common Vulnerability Exposure (CVE) ID: CVE-2017-2904
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0411
Common Vulnerability Exposure (CVE) ID: CVE-2017-2905
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0412
Common Vulnerability Exposure (CVE) ID: CVE-2017-2906
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0413
Common Vulnerability Exposure (CVE) ID: CVE-2017-2907
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0414
Common Vulnerability Exposure (CVE) ID: CVE-2017-2908
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0415
Common Vulnerability Exposure (CVE) ID: CVE-2017-2918
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0425
CopyrightCopyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2025 E-Soft Inc. All rights reserved.