Lucene search
Copyright (C) 2012 Greenbone AGOPENVAS:1361412562310831580HistoryAug 03, 2012 - 12:00 a.m.
Mandriva Update for libpng MDVSA-2012:046 (libpng)
2012-08-0300:00:00
Copyright (C) 2012 Greenbone AG
plugins.openvas.org
5
8.8 High
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.058 Low
EPSS
Percentile
93.3%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2012 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_xref(name:"URL", value:"http://www.mandriva.com/en/support/security/advisories/?name=MDVSA-2012:046");
script_oid("1.3.6.1.4.1.25623.1.0.831580");
script_version("2023-07-14T05:06:08+0000");
script_tag(name:"last_modification", value:"2023-07-14 05:06:08 +0000 (Fri, 14 Jul 2023)");
script_tag(name:"creation_date", value:"2012-08-03 09:50:28 +0530 (Fri, 03 Aug 2012)");
script_cve_id("CVE-2011-3048");
script_tag(name:"cvss_base", value:"6.8");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_xref(name:"MDVSA", value:"2012:046");
script_name("Mandriva Update for libpng MDVSA-2012:046 (libpng)");
script_tag(name:"summary", value:"The remote host is missing an update for the 'libpng'
package(s) announced via the referenced advisory.");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2012 Greenbone AG");
script_family("Mandrake Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/mandriva_mandrake_linux", "ssh/login/release", re:"ssh/login/release=MNDK_(2011\.0|mes5\.2|2010\.1)");
script_tag(name:"affected", value:"libpng on Mandriva Linux 2011.0,
Mandriva Enterprise Server 5.2,
Mandriva Linux 2010.1");
script_tag(name:"solution", value:"Please Install the Updated Packages.");
script_tag(name:"insight", value:"A potential memory corruption has been found and corrected in libpng
(CVE-2011-3048).
The updated packages have been patched to correct this issue.");
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release) exit(0);
res = "";
if(release == "MNDK_2011.0")
{
if ((res = isrpmvuln(pkg:"libpng3", rpm:"libpng3~1.2.46~1.3", rls:"MNDK_2011.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libpng-devel", rpm:"libpng-devel~1.2.46~1.3", rls:"MNDK_2011.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libpng-source", rpm:"libpng-source~1.2.46~1.3", rls:"MNDK_2011.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libpng-static-devel", rpm:"libpng-static-devel~1.2.46~1.3", rls:"MNDK_2011.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64png3", rpm:"lib64png3~1.2.46~1.3", rls:"MNDK_2011.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64png-devel", rpm:"lib64png-devel~1.2.46~1.3", rls:"MNDK_2011.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64png-static-devel", rpm:"lib64png-static-devel~1.2.46~1.3", rls:"MNDK_2011.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99);
exit(0);
}
if(release == "MNDK_mes5.2")
{
if ((res = isrpmvuln(pkg:"libpng3", rpm:"libpng3~1.2.31~2.7mdvmes5.2", rls:"MNDK_mes5.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libpng-devel", rpm:"libpng-devel~1.2.31~2.7mdvmes5.2", rls:"MNDK_mes5.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libpng-source", rpm:"libpng-source~1.2.31~2.7mdvmes5.2", rls:"MNDK_mes5.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libpng-static-devel", rpm:"libpng-static-devel~1.2.31~2.7mdvmes5.2", rls:"MNDK_mes5.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64png3", rpm:"lib64png3~1.2.31~2.7mdvmes5.2", rls:"MNDK_mes5.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64png-devel", rpm:"lib64png-devel~1.2.31~2.7mdvmes5.2", rls:"MNDK_mes5.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64png-static-devel", rpm:"lib64png-static-devel~1.2.31~2.7mdvmes5.2", rls:"MNDK_mes5.2")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99);
exit(0);
}
if(release == "MNDK_2010.1")
{
if ((res = isrpmvuln(pkg:"libpng3", rpm:"libpng3~1.2.43~1.5mdv2010.2", rls:"MNDK_2010.1")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libpng-devel", rpm:"libpng-devel~1.2.43~1.5mdv2010.2", rls:"MNDK_2010.1")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libpng-source", rpm:"libpng-source~1.2.43~1.5mdv2010.2", rls:"MNDK_2010.1")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libpng-static-devel", rpm:"libpng-static-devel~1.2.43~1.5mdv2010.2", rls:"MNDK_2010.1")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64png3", rpm:"lib64png3~1.2.43~1.5mdv2010.2", rls:"MNDK_2010.1")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64png-devel", rpm:"lib64png-devel~1.2.43~1.5mdv2010.2", rls:"MNDK_2010.1")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64png-static-devel", rpm:"lib64png-static-devel~1.2.43~1.5mdv2010.2", rls:"MNDK_2010.1")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99);
exit(0);
}
Related
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 08:50:57
nessus
nessus
F5 Networks BIG-IP : Libpng vulnerability (SOL15881)
2014-11-28 00:00:00
Amazon Linux AMI : libpng (ALAS-2012-68)
2013-09-04 00:00:00
Fedora 15 : libpng10-1.0.59-1.fc15 (2012-5079)
2012-04-09 00:00:00
f5
f5
K15881 : Libpng vulnerability CVE-2011-3048
2014-12-19 00:00:00
SOL15881 - Libpng vulnerability CVE-2011-3048
2014-11-27 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: libpng-1.5.10-1.fc17
2012-04-12 02:25:15
[SECURITY] Fedora 17 Update: libpng10-1.0.59-1.fc17
2012-04-12 03:10:50
[SECURITY] Fedora 16 Update: libpng10-1.0.59-1.fc16
2012-04-08 03:34:21
openvas
openvas
Ubuntu Update for libpng USN-1417-1
2012-04-11 00:00:00
Fedora Update for libpng FEDORA-2012-5526
2012-08-30 00:00:00
RedHat Update for libpng RHSA-2012:0523-01
2012-04-26 00:00:00
ubuntucve
ubuntucve
CVE-2011-3048
2011-12-31 00:00:00
centos
centos
libpng security update
2012-04-25 13:17:13
amazon
amazon
Medium: libpng
2012-04-30 14:52:00
redhat
redhat
(RHSA-2012:0523) Moderate: libpng security update
2012-04-25 00:00:00
prion
prion
Heap overflow
2012-05-29 20:55:00
ubuntu
ubuntu
libpng vulnerability
2012-04-05 00:00:00
cve
cve
CVE-2011-3048
2012-05-29 20:55:00
debian
debian
[SECURITY] [DSA 2446-1] libpng security update
2012-04-04 19:13:41
altlinux
altlinux
Security fix for the ALT Linux 6 package libpng version 1.2.49-alt1
2012-04-05 00:00:00
oraclelinux
oraclelinux
libpng security update
2012-04-25 00:00:00
freebsd
freebsd
png -- memory corruption/possible remote code execution
2012-03-29 00:00:00
slackware
slackware
[slackware-security] libpng
2012-07-25 03:00:37
securityvulns
securityvulns
libpng integer overflow
2012-02-22 00:00:00
Apple Mac OS X multiple security vulnerabilities
2012-10-01 00:00:00
APPLE-SA-2012-09-24-1 Apple TV 5.1
2012-10-04 00:00:00
gentoo
gentoo
libpng: Multiple vulnerabilities
2012-06-22 00:00:00
ibm
ibm
Security Bulletin: Gdal vulnerabilities affect IBM Netezza Analytics for NPS
2022-06-03 14:32:29
8.8 High
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.058 Low
EPSS
Percentile
93.3%
Related for OPENVAS:1361412562310831580