Test ID:	1.3.6.1.4.1.25623.1.0.67671
Category:	Mandrake Local Security Checks
Title:	Mandriva Security Advisory MDVSA-2010:127 (imlib2)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to imlib2 announced via advisory MDVSA-2010:127. A vulnerability has been found and corrected in imlib2: imlib2 before 1.4.2 allows context-dependent attackers to have an unspecified impact via a crafted (1) ARGB, (2) BMP, (3) JPEG, (4) LBM, (5) PNM, (6) TGA, or (7) XPM file, related to several heap and stack based buffer overflows - partly due to integer overflows. (CVE-2008-6079). Packages for 2008.0 and 2009.0 are provided as of the Extended Maintenance Program. Please visit this link to learn more: http://store.mandriva.com/product_info.php?cPath=149&products_id=490 The updated packages have been patched to correct this issue. Affected: 2008.0, 2009.0, Corporate 4.0, Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2010:127 Risk factor : Critical CVSS Score: 10.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2008-6079 BugTraq ID: 31880 http://www.securityfocus.com/bid/31880 Debian Security Information: DSA-2029 (Google Search) http://www.debian.org/security/2010/dsa-2029 http://secunia.com/advisories/32354 http://secunia.com/advisories/39340 http://www.vupen.com/english/advisories/2008/2898 http://www.vupen.com/english/advisories/2010/0803 XForce ISS Database: imlib2-multiple-unspecified(46037) https://exchange.xforce.ibmcloud.com/vulnerabilities/46037
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.