Test Kennung:	1.3.6.1.4.1.25623.1.0.703949
Kategorie:	Debian Local Security Checks
Titel:	Debian Security Advisory DSA 3949-1 (augeas - security update)
Zusammenfassung:	Han Han of Red Hat discovered that augeas, a configuration editing;tool, improperly handled some escaped strings. A remote attacker could;leverage this flaw by sending maliciously crafted strings, thus;causing an augeas-enabled application to crash or potentially execute;arbitrary code.
Beschreibung:	Summary: Han Han of Red Hat discovered that augeas, a configuration editing tool, improperly handled some escaped strings. A remote attacker could leverage this flaw by sending maliciously crafted strings, thus causing an augeas-enabled application to crash or potentially execute arbitrary code. Affected Software/OS: augeas on Debian Linux Solution: For the oldstable distribution (jessie), this problem has been fixed in version 1.2.0-0.2+deb8u2. For the stable distribution (stretch), this problem has been fixed in version 1.8.0-1+deb9u1. We recommend that you upgrade your augeas packages. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-7555 BugTraq ID: 100378 http://www.securityfocus.com/bid/100378 Debian Security Information: DSA-3949 (Google Search) http://www.debian.org/security/2017/dsa-3949 https://github.com/hercules-team/augeas/pull/480 RedHat Security Advisories: RHSA-2017:2788 https://access.redhat.com/errata/RHSA-2017:2788 RedHat Security Advisories: RHSA-2019:2403 https://access.redhat.com/errata/RHSA-2019:2403
Copyright	Copyright (C) 2017 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.