This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing one or more security
A number of vulnerabilities have been found and corrected in libpng :
Fixed 1-byte buffer overflow in pngpread.c (CVE-2008-3964). This was
allready fixed in Mandriva Linux 2009.0.
Fix the function png_check_keyword() that allowed setting arbitrary
bytes in the process memory to 0 (CVE-2008-5907).
Fix a potential DoS (Denial of Service) or to potentially compromise
an application using the library (CVE-2009-0040).
The updated packages have been patched to prevent this.
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.9
Public Exploit Available : false
Family: Mandriva Local Security Checks
Nessus Plugin ID: 36671 (mandriva_MDVSA-2009-051.nasl)
Bugtraq ID: 33827
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now