Mandriva Linux Security Advisory : jhead (MDVSA-2009:041)

Critical Nessus Plugin ID 37496


The remote Mandriva Linux host is missing a security update.


Security vulnerabilities have been identified and fixed in jhead.

Buffer overflow in the DoCommand function in jhead before 2.84 might allow context-dependent attackers to cause a denial of service (crash) (CVE-2008-4575).

Jhead before 2.84 allows local users to overwrite arbitrary files via a symlink attack on a temporary file (CVE-2008-4639).

Jhead 2.84 and earlier allows local users to delete arbitrary files via vectors involving a modified input filename (CVE-2008-4640).

jhead 2.84 and earlier allows attackers to execute arbitrary commands via shell metacharacters in unspecified input (CVE-2008-4641).

This update provides the latest Jhead to correct these issues.


Update the affected jhead package.

Plugin Details

Severity: Critical

ID: 37496

File Name: mandriva_MDVSA-2009-041.nasl

Version: $Revision: 1.13 $

Type: local

Published: 2009/04/23

Modified: 2016/11/28

Dependencies: 12634

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:ND

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:jhead, cpe:/o:mandriva:linux:2008.0, cpe:/o:mandriva:linux:2008.1, cpe:/o:mandriva:linux:2009.0

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2009/02/17

Reference Information

CVE: CVE-2008-4575, CVE-2008-4639, CVE-2008-4640, CVE-2008-4641

BID: 31770, 32506

MDVSA: 2009:041

CWE: 20, 59, 119