Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200411-12] zgv: Multiple buffer overflows Vulnerability Scan
Vulnerability Scan Summary
zgv: Multiple buffer overflows
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200411-12
(zgv: Multiple buffer overflows)
Multiple arithmetic overflows have been detected in the image processing
code of zgv.
A possible hacker could entice a user to open a specially-crafted image file,
potentially resulting in execution of arbitrary code with the rights of the
user running zgv.
There is no known workaround at this time.
All zgv users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=media-gfx/zgv-5.8"
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.