Test ID:	1.3.6.1.4.1.25623.1.0.57149
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-1117)
Summary:	The remote host is missing an update for the Debian 'libgd2' package(s) announced via the DSA-1117 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'libgd2' package(s) announced via the DSA-1117 advisory. Vulnerability Insight: It was discovered that the GD graphics library performs insufficient checks of the validity of GIF images, which might lead to denial of service by tricking the application into an infinite loop. For the stable distribution (sarge) this problem has been fixed in version 2.0.33-1.1sarge1. For the unstable distribution (sid) this problem has been fixed in version 2.0.33-5. We recommend that you upgrade your libgd2 packages. Affected Software/OS: 'libgd2' package(s) on Debian 3.1. Solution: Please install the updated package(s). CVSS Score: 5.4 CVSS Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2006-2906 BugTraq ID: 18294 http://www.securityfocus.com/bid/18294 Bugtraq: 20060606 libgd 2.0.33 infinite loop in GIF decoding ? (Google Search) http://www.securityfocus.com/archive/1/436132 Debian Security Information: DSA-1117 (Google Search) http://www.debian.org/security/2006/dsa-1117 http://www.mandriva.com/security/advisories?name=MDKSA-2006:112 http://www.mandriva.com/security/advisories?name=MDKSA-2006:113 http://www.mandriva.com/security/advisories?name=MDKSA-2006:122 http://secunia.com/advisories/20500 http://secunia.com/advisories/20571 http://secunia.com/advisories/20676 http://secunia.com/advisories/20853 http://secunia.com/advisories/20866 http://secunia.com/advisories/20887 http://secunia.com/advisories/21050 http://secunia.com/advisories/21186 http://secunia.com/advisories/23783 http://securityreason.com/securityalert/1067 SuSE Security Announcement: SUSE-SA:2006:031 (Google Search) http://www.novell.com/linux/security/advisories/2006_31_php.html http://www.trustix.org/errata/2006/0038 https://usn.ubuntu.com/298-1/ http://www.vupen.com/english/advisories/2006/2174 XForce ISS Database: gdgraphicslibrary-gif-dos(26976) https://exchange.xforce.ibmcloud.com/vulnerabilities/26976
Copyright	Copyright (C) 2008 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.