Fedora Core 10 FEDORA-2009-2885 (ghostscript) Network Vulnerability

Summary

The remote host is missing an update to ghostscript announced via advisory FEDORA-2009-2885.

Solution

Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update ghostscript' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-2885

Insight

Update Information: Security update for integer overflows (CVE-2009-0583) and upper bounds checks (CVE-2009-0584) in the ICC profile handling. ChangeLog: * Fri Mar 20 2009 Tim Waugh 8.63-5 - Applied patch to fix CVE-2009-0583 (bug #487742) and CVE-2009-0584 (bug #487744).

References

https://bugzilla.redhat.com/show_bug.cgi?id=487742
https://bugzilla.redhat.com/show_bug.cgi?id=487744

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-0583, CVE-2009-0584
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Fedora Core 10 FEDORA-2009-1213 (gstreamer-plugins-good)
Fedora Core 10 FEDORA-2009-10981 (blam)
Fedora Core 10 FEDORA-2009-7761 (moin)
Fedora Core 10 FEDORA-2009-6366 (firefox)
Fedora Core 10 FEDORA-2009-3357 (mapserver)

Take action and discover your vulnerabilities