Fedora Core 10 FEDORA-2009-2885 (ghostscript) Network Vulnerability

Summary

The remote host is missing an update to ghostscript announced via advisory FEDORA-2009-2885.

Solution

Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update ghostscript' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-2885

Insight

Update Information: Security update for integer overflows (CVE-2009-0583) and upper bounds checks (CVE-2009-0584) in the ICC profile handling. ChangeLog: * Fri Mar 20 2009 Tim Waugh 8.63-5 - Applied patch to fix CVE-2009-0583 (bug #487742) and CVE-2009-0584 (bug #487744).

References

https://bugzilla.redhat.com/show_bug.cgi?id=487742
https://bugzilla.redhat.com/show_bug.cgi?id=487744

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-0583, CVE-2009-0584

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Fedora Core 10 FEDORA-2009-11126 (asterisk)
Fedora Core 10 FEDORA-2009-2982 (java-1.6.0-openjdk)
Fedora Core 10 FEDORA-2009-10344 (aria2)
Fedora Core 10 FEDORA-2009-6883 (kernel)
Fedora Core 10 FEDORA-2009-2970 (lcms)

Take action and discover your vulnerabilities