Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 Tenable Network Security, Inc.FEDORA_2012-6529.NASL
HistoryMay 07, 2012 - 12:00 a.m.

Fedora 16 : argyllcms-1.4.0-1.fc16 (2012-6529)

2012-05-0700:00:00
This script is Copyright (C) 2012-2021 Tenable Network Security, Inc.
www.tenable.com
8

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.044 Low

EPSS

Percentile

92.4%

JSON

  • Update to latest upstream release

    • A colorimeter can now be used as a reference to make ccmx files

    • Added dither/screening support for 8 bit output of render

    • Added JPEG file support to cctiff, tiffgamut and extracticc

    • Fixed double free in icc/icc.c for profiles that have duplicate tags

    • Fix bugs in ColorMunki Transmissive measurement mode calibration.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2012-6529.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(58998);
  script_version("1.11");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2012-1616");
  script_bugtraq_id(53240);
  script_xref(name:"FEDORA", value:"2012-6529");

  script_name(english:"Fedora 16 : argyllcms-1.4.0-1.fc16 (2012-6529)");
  script_summary(english:"Checks rpm output for the updated package.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"  - Update to latest upstream release

    - A colorimeter can now be used as a reference to make
      ccmx files

    - Added dither/screening support for 8 bit output of
      render

    - Added JPEG file support to cctiff, tiffgamut and
      extracticc

    - Fixed double free in icc/icc.c for profiles that have
      duplicate tags

    - Fix bugs in ColorMunki Transmissive measurement mode
      calibration.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=809697"
  );
  # https://lists.fedoraproject.org/pipermail/package-announce/2012-May/079762.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?4591487a"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected argyllcms package."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:argyllcms");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:16");

  script_set_attribute(attribute:"patch_publication_date", value:"2012/04/24");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/05/07");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 Tenable Network Security, Inc.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^16([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 16.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC16", reference:"argyllcms-1.4.0-1.fc16")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "argyllcms");
}
VendorProductVersionCPE
fedoraprojectfedoraargyllcmsp-cpe:/a:fedoraproject:fedora:argyllcms
fedoraprojectfedora16cpe:/o:fedoraproject:fedora:16

Related

openvas 4
nvd 1
debiancve 1
nessus 1
fedora 1
cvelist 1
gentoo 1
cve 1
ubuntucve 1
prion 1
openvas
openvas
Gentoo Security Advisory GLSA 201206-04 (argyllcms)
2012-08-10 00:00:00
Fedora Update for argyllcms FEDORA-2012-6529
2012-05-08 00:00:00
Fedora Update for argyllcms FEDORA-2012-6529
2012-05-08 00:00:00
nvd
nvd
CVE-2012-1616
2012-06-21 15:55:12
debiancve
debiancve
CVE-2012-1616
2012-06-21 15:55:12
nessus
nessus
GLSA-201206-04 : ArgyllCMS: User-assisted execution of arbitrary code
2012-06-21 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: argyllcms-1.4.0-1.fc16
2012-05-04 20:30:32
cvelist
cvelist
CVE-2012-1616
2012-06-21 15:00:00
gentoo
gentoo
ArgyllCMS: User-assisted execution of arbitrary code
2012-06-18 00:00:00
cve
cve
CVE-2012-1616
2012-06-21 15:55:12
ubuntucve
ubuntucve
CVE-2012-1616
2012-06-21 00:00:00
prion
prion
Design/Logic Flaw
2012-06-21 15:55:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.044 Low

EPSS

Percentile

92.4%

JSON
Related for FEDORA_2012-6529.NASL
openvas4nvd1debiancve1nessus1fedora1cvelist1gentoo1cve1ubuntucve1prion1