Detections
Analytics
openSUSE 10 Security Update : GraphicsMagick (GraphicsMagick-5276)
medium Nessus Plugin ID 33378
Synopsis
The remote openSUSE host is missing a security update.Description
GraphicsMagick is affected by two security problems :CVE-2008-1096: Buffer overflow in the handling of XCF files CVE-2008-1097: Heap buffer overflow in the handling of PCX files
Solution
Update the affected GraphicsMagick packages.Plugin Details
Severity: Medium
ID: 33378
File Name: suse_GraphicsMagick-5276.nasl
Version: 1.10
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 7/2/2008
Updated: 1/14/2021
Supported Sensors: Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: Medium
Base Score: 6.8
Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P
Vulnerability Information
CPE: p-cpe:/a:novell:opensuse:libgraphicsmagick%2b%2b-devel, p-cpe:/a:novell:opensuse:graphicsmagick-devel, p-cpe:/a:novell:opensuse:graphicsmagick, cpe:/o:novell:opensuse:10.2, p-cpe:/a:novell:opensuse:graphicsmagick-c%2b%2b-devel, p-cpe:/a:novell:opensuse:perl-graphicsmagick, p-cpe:/a:novell:opensuse:libgraphicsmagick%2b%2b1, cpe:/o:novell:opensuse:10.3, p-cpe:/a:novell:opensuse:libgraphicsmagick1, p-cpe:/a:novell:opensuse:libgraphicsmagickwand0, p-cpe:/a:novell:opensuse:graphicsmagick-c%2b%2b
Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list, Host/cpu
Patch Publication Date: 5/26/2008
Reference Information
CVE: CVE-2008-1096, CVE-2008-1097