Test ID:	1.3.6.1.4.1.25623.1.0.59568
Category:	Fedora Local Security Checks
Title:	Fedora Core 6 FEDORA-2007-614 (libexif)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to libexif announced via advisory FEDORA-2007-614. Most digital cameras produce EXIF files, which are JPEG files with extra tags that contain information about the image. The EXIF library allows you to parse an EXIF file and read the data from those tags. Update Information: The libexif package contains the EXIF library. Applications use this library to parse EXIF image files. An integer overflow flaw was found in the way libexif parses EXIF image tags. If a victim opens a carefully crafted EXIF image file it could cause the application linked against libexif to execute arbitrary code or crash. (CVE-2007-4168) Users of libexif should upgrade to these updated packages, which contain a backported patch and are not vulnerable to this issue. * Wed Jun 13 2007 Matthias Clasen - 0.6.15-2 - Add patch for CVE-2007-4168. Fix bug #243892 Solution: Apply the appropriate updates. This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/ This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at http://fedora.redhat.com/docs/yum/. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2007-614 Risk factor : High
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2007-4168
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.