Debian Local Security Checks : Debian Security Advisory DSA 3015-1 (lua5.1

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.703015

Categoría: Debian Local Security Checks

Título: Debian Security Advisory DSA 3015-1 (lua5.1 - security update)

Resumen: A heap-based overflow vulnerability was found in the way Lua, a;simple, extensible, embeddable programming language, handles varargs;functions with many fixed parameters called with few arguments,;leading to application crashes or, potentially, arbitrary code;execution.

Descripción: Summary:
A heap-based overflow vulnerability was found in the way Lua, a
simple, extensible, embeddable programming language, handles varargs
functions with many fixed parameters called with few arguments,
leading to application crashes or, potentially, arbitrary code
execution.

Affected Software/OS:
lua5.1 on Debian Linux

Solution:
For the stable distribution (wheezy), this problem has been fixed in
version 5.1.5-4+deb7u1.

For the unstable distribution (sid), this problem has been fixed in
version 5.1.5-7.

We recommend that you upgrade your lua5.1 packages.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2014-5461
BugTraq ID: 69342
http://www.securityfocus.com/bid/69342
Debian Security Information: DSA-3015 (Google Search)
http://www.debian.org/security/2014/dsa-3015
Debian Security Information: DSA-3016 (Google Search)
http://www.debian.org/security/2014/dsa-3016
https://security.gentoo.org/glsa/201701-53
http://www.mandriva.com/security/advisories?name=MDVSA-2015:144
http://www.openwall.com/lists/oss-security/2014/08/21/1
http://www.openwall.com/lists/oss-security/2014/08/21/4
http://www.openwall.com/lists/oss-security/2014/08/27/2
http://secunia.com/advisories/59890
http://secunia.com/advisories/60869
http://secunia.com/advisories/61411
SuSE Security Announcement: openSUSE-SU-2014:1145 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-09/msg00030.html
http://www.ubuntu.com/usn/USN-2338-1

Copyright Copyright (c) 2014 Greenbone Networks GmbH http://greenbone.net

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.703015
Categoría:	Debian Local Security Checks
Título:	Debian Security Advisory DSA 3015-1 (lua5.1 - security update)
Resumen:	A heap-based overflow vulnerability was found in the way Lua, a;simple, extensible, embeddable programming language, handles varargs;functions with many fixed parameters called with few arguments,;leading to application crashes or, potentially, arbitrary code;execution.
Descripción:	Summary: A heap-based overflow vulnerability was found in the way Lua, a simple, extensible, embeddable programming language, handles varargs functions with many fixed parameters called with few arguments, leading to application crashes or, potentially, arbitrary code execution. Affected Software/OS: lua5.1 on Debian Linux Solution: For the stable distribution (wheezy), this problem has been fixed in version 5.1.5-4+deb7u1. For the unstable distribution (sid), this problem has been fixed in version 5.1.5-7. We recommend that you upgrade your lua5.1 packages. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-5461 BugTraq ID: 69342 http://www.securityfocus.com/bid/69342 Debian Security Information: DSA-3015 (Google Search) http://www.debian.org/security/2014/dsa-3015 Debian Security Information: DSA-3016 (Google Search) http://www.debian.org/security/2014/dsa-3016 https://security.gentoo.org/glsa/201701-53 http://www.mandriva.com/security/advisories?name=MDVSA-2015:144 http://www.openwall.com/lists/oss-security/2014/08/21/1 http://www.openwall.com/lists/oss-security/2014/08/21/4 http://www.openwall.com/lists/oss-security/2014/08/27/2 http://secunia.com/advisories/59890 http://secunia.com/advisories/60869 http://secunia.com/advisories/61411 SuSE Security Announcement: openSUSE-SU-2014:1145 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-09/msg00030.html http://www.ubuntu.com/usn/USN-2338-1
Copyright	Copyright (c) 2014 Greenbone Networks GmbH http://greenbone.net