Scientific Linux Security Update : giflib on SL5.x i386/x86_64
High Nessus Plugin ID 60574
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionSeveral flaws were discovered in the way giflib decodes GIF images. An attacker could create a carefully crafted GIF image that could cause an application using giflib to crash or, possibly, execute arbitrary code when opened by a victim. (CVE-2005-2974, CVE-2005-3350)
All running applications using giflib must be restarted for the update to take effect.
SolutionUpdate the affected giflib, giflib-devel and / or giflib-utils packages.