Test Kennung:	1.3.6.1.4.1.25623.1.0.892002
Kategorie:	Debian Local Security Checks
Titel:	Debian LTS: Security Advisory for libice (DLA-2002-1)
Zusammenfassung:	The remote host is missing an update for the 'libice'; package(s) announced via the DLA-2002-1 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'libice' package(s) announced via the DLA-2002-1 advisory. Vulnerability Insight: It has been found, that libice, an X11 Inter-Client Exchange library, uses weak entropy to generate keys. Using arc4random_buf() from libbsd should avoid this flaw. Affected Software/OS: 'libice' package(s) on Debian Linux. Solution: For Debian 8 'Jessie', this problem has been fixed in version 2:1.0.9-1+deb8u1. We recommend that you upgrade your libice packages. CVSS Score: 2.1 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-2626 BugTraq ID: 96480 http://www.securityfocus.com/bid/96480 https://security.gentoo.org/glsa/201704-03 https://www.x41-dsec.de/lab/advisories/x41-2017-001-xorg/ https://lists.debian.org/debian-lts-announce/2019/11/msg00022.html http://www.openwall.com/lists/oss-security/2019/07/14/3 RedHat Security Advisories: RHSA-2017:1865 https://access.redhat.com/errata/RHSA-2017:1865 http://www.securitytracker.com/id/1037919
Copyright	Copyright (C) 2019 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.