ID de Prueba:	1.3.6.1.4.1.25623.1.0.57279
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2006:141 (gnupg)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to gnupg announced via advisory MDKSA-2006:141. An integer overflow vulnerability was discovered in gnupg where an attacker could create a carefully-crafted message packet with a large length that could cause gnupg to crash or possibly overwrite memory when opened. Updated packages have been patched to correct this issue. Affected: 2006.0, Corporate 3.0, Multi Network Firewall 2.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2006:141 Risk factor : Medium CVSS Score: 5.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-3746 BugTraq ID: 19110 http://www.securityfocus.com/bid/19110 Bugtraq: 20060802 rPSA-2006-0143-1 gnupg (Google Search) http://www.securityfocus.com/archive/1/442012/100/0/threaded Bugtraq: 20060808 ERRATA: [ GLSA 200608-08 ] GnuPG: Integer overflow vulnerability (Google Search) http://www.securityfocus.com/archive/1/442621/100/100/threaded Debian Security Information: DSA-1140 (Google Search) http://www.debian.org/security/2006/dsa-1140 Debian Security Information: DSA-1141 (Google Search) http://www.debian.org/security/2006/dsa-1141 http://security.gentoo.org/glsa/glsa-200608-08.xml http://www.mandriva.com/security/advisories?name=MDKSA-2006:141 http://bugs.debian.org/cgi-bin/bugreport.cgi/gnupg.CVE-2006-3746.diff?bug=381204;msg=15;att=1 http://issues.rpath.com/browse/RPL-560 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=200502 http://lists.immunitysec.com/pipermail/dailydave/2006-July/003354.html http://www.gossamer-threads.com/lists/gnupg/devel/37623 http://www.osvdb.org/27664 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11347 http://www.redhat.com/support/errata/RHSA-2006-0615.html http://securitytracker.com/id?1016622 http://secunia.com/advisories/21297 http://secunia.com/advisories/21300 http://secunia.com/advisories/21306 http://secunia.com/advisories/21326 http://secunia.com/advisories/21329 http://secunia.com/advisories/21333 http://secunia.com/advisories/21346 http://secunia.com/advisories/21351 http://secunia.com/advisories/21378 http://secunia.com/advisories/21467 http://secunia.com/advisories/21522 http://secunia.com/advisories/21524 http://secunia.com/advisories/21598 SGI Security Advisory: 20060801-01-P ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P SuSE Security Announcement: SUSE-SR:2006:020 (Google Search) http://www.novell.com/linux/security/advisories/2006_20_sr.html http://lwn.net/Alerts/194228/ http://www.ubuntu.com/usn/usn-332-1 http://www.vupen.com/english/advisories/2006/3123 XForce ISS Database: gnupg-parsecomment-bo(28220) https://exchange.xforce.ibmcloud.com/vulnerabilities/28220
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.