gegl-0.1.2-4.AXS4
エラータID: AXSA:2012-1027:01
リリース日:
2012/12/13 Thursday - 15:41
題名:
gegl-0.1.2-4.AXS4
影響のあるチャネル:
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- GEGL (Generic Graphics Library) の operations/external/ppm-load.c には、整数オーバーフローの脆弱性が存在します。(CVE-2012-4433)
一部 CVE の翻訳文は JVN からの引用になります。
http://jvndb.jvn.jp/
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2012-4433
Multiple integer overflows in operations/external/ppm-load.c in GEGL (Generic Graphics Library) 0.2.0 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a large (1) width or (2) height value in a Portable Pixel Map (ppm) image, which triggers a heap-based buffer overflow.
Multiple integer overflows in operations/external/ppm-load.c in GEGL (Generic Graphics Library) 0.2.0 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a large (1) width or (2) height value in a Portable Pixel Map (ppm) image, which triggers a heap-based buffer overflow.
追加情報:
N/A
ダウンロード:
SRPMS
- gegl-0.1.2-4.AXS4.src.rpm
MD5: 57bbe7b22cb663bb6c4687b08948ef25
SHA-256: 79088ab3aa48738b67a15bdac9498b3979e459ae0e3cadaf29f1105756645f23
Size: 3.00 MB
Asianux Server 4 for x86
- gegl-0.1.2-4.AXS4.i686.rpm
MD5: bd3b549663fb54bfb3c33c117324dfd7
SHA-256: 2f8a5bcfb4ab1e54020568be4810f63bd8eed28cba2f8d8526025d1c87f8ff56
Size: 399.55 kB
Asianux Server 4 for x86_64
- gegl-0.1.2-4.AXS4.x86_64.rpm
MD5: ccdbb64026103f9c9ca3e38a4d4b8b43
SHA-256: fe46205bb0da26b3529a4193ecc38665c7f2186b4f96112fc59135b9ffcba955
Size: 412.39 kB