Test ID:	1.3.6.1.4.1.25623.1.0.122045
Category:	Oracle Linux Local Security Checks
Title:	Oracle: Security Advisory (ELSA-2011-1811)
Summary:	The remote host is missing an update for the 'netpbm' package(s) announced via the ELSA-2011-1811 advisory.
Description:	Summary: The remote host is missing an update for the 'netpbm' package(s) announced via the ELSA-2011-1811 advisory. Vulnerability Insight: [10.35.58-8.el5.3] - Actually apply the patch for - CVE-2009-4274 #760849 [10.35.58-8.el5.2] - fix xpmtoppm overflow - CVE-2009-4274 (#760849) [10.35.58-8.el5.1] - fix libjasper heap buffer overflow CVE-2011-4516 CVE-2011-4517 (#760849) Affected Software/OS: 'netpbm' package(s) on Oracle Linux 4, Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-4274 38164 http://www.securityfocus.com/bid/38164 38530 http://secunia.com/advisories/38530 38915 http://secunia.com/advisories/38915 ADV-2010-0358 http://www.vupen.com/english/advisories/2010/0358 ADV-2010-0780 http://www.vupen.com/english/advisories/2010/0780 DSA-2026 http://www.debian.org/security/2010/dsa-2026 MDVSA-2010:039 http://www.mandriva.com/security/advisories?name=MDVSA-2010:039 RHSA-2011:1811 http://www.redhat.com/support/errata/RHSA-2011-1811.html SUSE-SR:2010:006 http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html [oss-security] 20100209 vulnerability in netpbm (CVE-2009-4274) http://www.openwall.com/lists/oss-security/2010/02/09/11 http://netpbm.svn.sourceforge.net/viewvc/netpbm/stable/converter/ppm/xpmtoppm.c?view=patch&r1=995&r2=1076&pathrev=1076 http://netpbm.svn.sourceforge.net/viewvc/netpbm/stable/doc/HISTORY?view=markup https://bugzilla.redhat.com/show_bug.cgi?id=546580 netpbm-xpm-bo(56207) https://exchange.xforce.ibmcloud.com/vulnerabilities/56207 Common Vulnerability Exposure (CVE) ID: CVE-2011-4516 BugTraq ID: 50992 http://www.securityfocus.com/bid/50992 CERT/CC vulnerability note: VU#887409 http://www.kb.cert.org/vuls/id/887409 Debian Security Information: DSA-2371 (Google Search) http://www.debian.org/security/2011/dsa-2371 http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071561.html http://lists.fedoraproject.org/pipermail/package-announce/2011-December/071458.html http://osvdb.org/77595 http://www.redhat.com/support/errata/RHSA-2011-1807.html RedHat Security Advisories: RHSA-2015:0698 http://rhn.redhat.com/errata/RHSA-2015-0698.html http://secunia.com/advisories/47193 http://secunia.com/advisories/47306 http://secunia.com/advisories/47353 http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.538606 SuSE Security Announcement: openSUSE-SU-2011:1317 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00010.html http://www.ubuntu.com/usn/USN-1315-1 Common Vulnerability Exposure (CVE) ID: CVE-2011-4517 http://osvdb.org/77596 XForce ISS Database: jasper-jpccrggetparms-bo(71701) https://exchange.xforce.ibmcloud.com/vulnerabilities/71701
Copyright	Copyright (C) 2015 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.