ID de Prueba:	1.3.6.1.4.1.25623.1.0.842557
Categoría:	Ubuntu Local Security Checks
Título:	Ubuntu Update for libxml2 USN-2834-1
Resumen:	The remote host is missing an update for the 'libxml2'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'libxml2' package(s) announced via the referenced advisory. Vulnerability Insight: Kostya Serebryany discovered that libxml2 incorrectly handled certain malformed documents. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly cause libxml2 to crash, resulting in a denial of service. (CVE-2015-5312, CVE-2015-7497, CVE-2015-7498, CVE-2015-7499, CVE-2015-7500) Hugh Davenport discovered that libxml2 incorrectly handled certain malformed documents. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly cause libxml2 to crash, resulting in a denial of service. (CVE-2015-8241, CVE-2015-8242) Hanno Boeck discovered that libxml2 incorrectly handled certain malformed documents. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly cause libxml2 to crash, resulting in a denial of service. This issue only applied to Ubuntu 12.04 LTS, Ubuntu 14.04 LTS and Ubuntu 15.04. (CVE-2015-8317) Affected Software/OS: libxml2 on Ubuntu 15.10, Ubuntu 15.04, Ubuntu 14.04 LTS, Ubuntu 12.04 LTS Solution: Please Install the Updated Packages. CVSS Score: 7.1 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-5312 http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html BugTraq ID: 79536 http://www.securityfocus.com/bid/79536 Debian Security Information: DSA-3430 (Google Search) http://www.debian.org/security/2015/dsa-3430 https://security.gentoo.org/glsa/201701-37 HPdes Security Advisory: HPSBGN03537 http://marc.info/?l=bugtraq&m=145382616617563&w=2 RedHat Security Advisories: RHSA-2015:2549 http://rhn.redhat.com/errata/RHSA-2015-2549.html RedHat Security Advisories: RHSA-2015:2550 http://rhn.redhat.com/errata/RHSA-2015-2550.html RedHat Security Advisories: RHSA-2016:1089 http://rhn.redhat.com/errata/RHSA-2016-1089.html http://www.securitytracker.com/id/1034243 SuSE Security Announcement: openSUSE-SU-2015:2372 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-12/msg00120.html SuSE Security Announcement: openSUSE-SU-2016:0106 (Google Search) http://lists.opensuse.org/opensuse-updates/2016-01/msg00031.html http://www.ubuntu.com/usn/USN-2834-1 Common Vulnerability Exposure (CVE) ID: CVE-2015-7497 BugTraq ID: 79508 http://www.securityfocus.com/bid/79508 Common Vulnerability Exposure (CVE) ID: CVE-2015-7498 BugTraq ID: 79548 http://www.securityfocus.com/bid/79548 Common Vulnerability Exposure (CVE) ID: CVE-2015-7499 BugTraq ID: 79509 http://www.securityfocus.com/bid/79509 Common Vulnerability Exposure (CVE) ID: CVE-2015-7500 BugTraq ID: 79562 http://www.securityfocus.com/bid/79562 Common Vulnerability Exposure (CVE) ID: CVE-2015-8241 BugTraq ID: 77621 http://www.securityfocus.com/bid/77621 http://www.openwall.com/lists/oss-security/2015/11/17/5 http://www.openwall.com/lists/oss-security/2015/11/18/23 Common Vulnerability Exposure (CVE) ID: CVE-2015-8242 BugTraq ID: 77681 http://www.securityfocus.com/bid/77681 Common Vulnerability Exposure (CVE) ID: CVE-2015-8317 http://lists.apple.com/archives/security-announce/2016/Jul/msg00000.html http://lists.apple.com/archives/security-announce/2016/Jul/msg00001.html http://lists.apple.com/archives/security-announce/2016/Jul/msg00002.html http://lists.apple.com/archives/security-announce/2016/Jul/msg00003.html http://lists.apple.com/archives/security-announce/2016/Jul/msg00005.html BugTraq ID: 91826 http://www.securityfocus.com/bid/91826 https://blog.fuzzing-project.org/28-Libxml2-Several-out-of-bounds-reads.html http://www.openwall.com/lists/oss-security/2015/11/21/1 http://www.openwall.com/lists/oss-security/2015/11/22/3
Copyright	Copyright (C) 2015 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.