Slackware Advisory SSA:2004-305-02 Libtiff Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2004-305-02.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2004-305-02

Insight

New libtiff packages are available for Slackware 8.1, 9.0, 9.1, 10.1, and -current to fix security issues that could lead to application crashes, or possibly execution of arbitrary code. More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0803 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0804 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0886

Severity

Classification

CVE CVE-2004-0803, CVE-2004-0804, CVE-2004-0886
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Slackware Advisory SSA:2003-308-01 apache security update
Slackware Advisory SSA:2004-111-01 xine security update
Slackware Advisory SSA:2003-213-01 KDE packages updated
Slackware Advisory SSA:2003-260-01 OpenSSH updated again
Slackware Advisory SSA:2003-195-01b nfs-utils packages replaced

Slackware Advisory SSA:2004-305-02 libtiff

Take action and discover your vulnerabilities