Summary
The remote host is missing an update to argyllcms
announced via advisory FEDORA-2009-3031.
Solution
Apply the appropriate updates.
This update can be installed with the yum update program. Use su -c 'yum update argyllcms' at the command line.
For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/.
https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-3031
Insight
Update Information:
Multiple integer overflows were found in the International Color Consortium Format Library (icclib). An attacker could use this flaw to potentially execute arbitrary code by requesting to translate a specially- crafted image file created on one device into another's device native color space via a device file.
ChangeLog:
* Mon Mar 23 2009 Jon Ciesla - 1.0.3-3
- Patch for ICC library CVE-2009-{0583, 0584} by Tim Waugh.
References
Severity
Classification
-
CVE CVE-2009-0583, CVE-2009-0584 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities