Test ID:	1.3.6.1.4.1.25623.1.0.57682
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-1221-1)
Summary:	The remote host is missing an update for the Debian 'libgsf' package(s) announced via the DSA-1221-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'libgsf' package(s) announced via the DSA-1221-1 advisory. Vulnerability Insight: infamous41md discovered a heap buffer overflow vulnerability in libgsf, a GNOME library for reading and writing structured file formats, which could lead to the execution of arbitrary code. For the stable distribution (sarge) this problem has been fixed in version 1.11.1-1sarge1. For the unstable distribution (sid) this problem has been fixed in version 1.14.2-1. We recommend that you upgrade your libgsf packages. Affected Software/OS: 'libgsf' package(s) on Debian 3.1. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2006-4514 BugTraq ID: 21358 http://www.securityfocus.com/bid/21358 Bugtraq: 20061214 rPSA-2006-0232-1 libgsf (Google Search) http://www.securityfocus.com/archive/1/454389/30/9210/threaded Debian Security Information: DSA-1221 (Google Search) http://www.debian.org/security/2006/dsa-1221 http://security.gentoo.org/glsa/glsa-200612-13.xml http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=446 http://www.mandriva.com/security/advisories?name=MDKSA-2006:220 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9413 RedHat Security Advisories: RHSA-2007:0011 http://rhn.redhat.com/errata/RHSA-2007-0011.html http://secunia.com/advisories/23164 http://secunia.com/advisories/23166 http://secunia.com/advisories/23167 http://secunia.com/advisories/23227 http://secunia.com/advisories/23337 http://secunia.com/advisories/23352 http://secunia.com/advisories/23355 http://secunia.com/advisories/23686 http://secunia.com/advisories/23920 SGI Security Advisory: 20070101-01-P ftp://patches.sgi.com/support/free/security/advisories/20070101-01-P.asc SuSE Security Announcement: SUSE-SA:2006:076 (Google Search) http://lists.suse.com/archive/suse-security-announce/2006-Dec/0005.html http://www.ubuntu.com/usn/usn-391-1 http://www.vupen.com/english/advisories/2006/4784 XForce ISS Database: libgsf-metabat-bo(30611) https://exchange.xforce.ibmcloud.com/vulnerabilities/30611
Copyright	Copyright (C) 2008 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.