Test ID:	1.3.6.1.4.1.25623.1.0.71735
Category:	Ubuntu Local Security Checks
Title:	Ubuntu USN-1402-1 (libpng12-0)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to libpng12-0 announced via advisory USN-1402-1. Details: It was discovered that libpng did not properly process compressed chunks. If a user or automated system using libpng were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or execute code with the privileges of the user invoking the program. Solution: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.10: libpng12-0 1.2.46-3ubuntu1.2 Ubuntu 11.04: libpng12-0 1.2.44-1ubuntu3.3 Ubuntu 10.10: libpng12-0 1.2.44-1ubuntu0.3 Ubuntu 10.04 LTS: libpng12-0 1.2.42-1ubuntu2.4 Ubuntu 8.04 LTS: libpng12-0 1.2.15~ beta5-3ubuntu0.6 http://www.securityspace.com/smysecure/catid.html?in=USN-1402-1 CVSS Score: 6.8 CVSS Vector: AV:L/AC:H/Au:NR/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-3045 Debian Security Information: DSA-2439 (Google Search) http://www.debian.org/security/2012/dsa-2439 http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075424.html http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075987.html http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075981.html http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075619.html http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076731.html http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076461.html http://security.gentoo.org/glsa/glsa-201206-15.xml http://www.mandriva.com/security/advisories?name=MDVSA-2012:033 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14763 RedHat Security Advisories: RHSA-2012:0407 http://rhn.redhat.com/errata/RHSA-2012-0407.html RedHat Security Advisories: RHSA-2012:0488 http://rhn.redhat.com/errata/RHSA-2012-0488.html http://www.securitytracker.com/id?1026823 http://secunia.com/advisories/48320 http://secunia.com/advisories/48485 http://secunia.com/advisories/48512 http://secunia.com/advisories/48554 http://secunia.com/advisories/49660 SuSE Security Announcement: openSUSE-SU-2012:0432 (Google Search) http://lists.opensuse.org/opensuse-updates/2012-03/msg00051.html SuSE Security Announcement: openSUSE-SU-2012:0466 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00000.html
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.