---------------------------------------------------------------------- A new version (0.9.0.0 - Release Candidate 1) of the free Secunia PSI has been released. The new version includes many new and advanced features, which makes it even easier to stay patched. Download and test it today: https://psi.secunia.com/ Read more about this new version: https://psi.secunia.com/?page=changelog ---------------------------------------------------------------------- TITLE: Mandriva update for libexif SECUNIA ADVISORY ID: SA28400 VERIFY ADVISORY: http://secunia.com/advisories/28400/ CRITICAL: Moderately critical IMPACT: DoS, System access WHERE: >From remote OPERATING SYSTEM: Mandriva Linux 2007 http://secunia.com/product/12165/ DESCRIPTION: Mandriva has issued an update for libexif. This fixes two vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise an application using the library. For more information: SA28076 SOLUTION: Apply updated packages. -- Mandriva Linux 2007 -- 2c289f5a9a4fea00f9afa580ac96673f 2007.0/i586/libexif12-0.6.13-2.3mdv2007.0.i586.rpm 7d6859ad702d67e2c9a6d0cab41f77a7 2007.0/i586/libexif12-devel-0.6.13-2.3mdv2007.0.i586.rpm e81ea032d6ef96ee79938e3f5e3fbe64 2007.0/SRPMS/libexif-0.6.13-2.3mdv2007.0.src.rpm -- Mandriva Linux 2007/X86_64 -- ed4d59942949b0959c68eaf604c813c8 2007.0/x86_64/lib64exif12-0.6.13-2.3mdv2007.0.x86_64.rpm 7585cfc168bda99b59dad5ece9431f1a 2007.0/x86_64/lib64exif12-devel-0.6.13-2.3mdv2007.0.x86_64.rpm e81ea032d6ef96ee79938e3f5e3fbe64 2007.0/SRPMS/libexif-0.6.13-2.3mdv2007.0.src.rpm ORIGINAL ADVISORY: http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:005 OTHER REFERENCES: SA28076: http://secunia.com/advisories/28076/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------