Summary
The remote host is missing an update to xemacs
announced via advisory FEDORA-2009-8993.
Solution
Apply the appropriate updates.
This update can be installed with the yum update program. Use su -c 'yum update xemacs' at the command line.
For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/.
https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-8993
Insight
Update Information:
This update fixes multiple buffer overflows when reading large image files, or maliciously created image files whose headers misrepresent the actual image size.
The update also addresses multiple font issues, some of which cause warnings on startup. Some warnings remain, however, unless an ISO8859-13 fonts (e.g., terminus) is installed. Also note that some warnings remain on Rawhide pending a resolution for bz 507637.
ChangeLog:
* Mon Aug 24 2009 Jerry James - 21.5.29-2
- Fix image overflow bug (CVE-2009-2688).
- Fix calling xft-font-create-object in non-Xft builds (#512623).
- Rebase patches to eliminate fuzz/offsets.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2009-2688 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities