Family: Debian Local Security Checks --> Category: infos
[DSA1038] DSA-1038-1 xzgv Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Andrea Barisani discovered that xzgv, a picture viewer for X with a
thumbnail-based selector, attempts to decode JPEG images within the
CMYK/YCCK colour space incorrectly, which could lead to the execution
of arbitrary code.
For the old stable distribution (woody) this problem has been fixed in
For the stable distribution (sarge) this problem has been fixed in
For the unstable distribution (sid) this problem will be fixed soon.
We recommend that you upgrade your xzgv package.
Solution : http://www.debian.org/security/2006/dsa-1038
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.