SuSE Local Security Checks : openSUSE: Security Advisory for libgme (openSUSE-SU-2017:0022-1)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.851468

Categoría: SuSE Local Security Checks

Título: openSUSE: Security Advisory for libgme (openSUSE-SU-2017:0022-1)

Resumen: The remote host is missing an update for the 'libgme'; package(s) announced via the referenced advisory.

Descripción: Summary:
The remote host is missing an update for the 'libgme'
package(s) announced via the referenced advisory.

Vulnerability Insight:
This update for libgme fixes the following issues:

- CVE-2016-9957, CVE-2016-9958, CVE-2016-9959, CVE-2016-9960,
CVE-2016-9961: Various issues were fixed in the handling of SPC music
files that could have been exploited for gaining privileges of desktop
users. [bsc#1015941]

This update was imported from the SUSE:SLE-12:Update update project.

Affected Software/OS:
libgme on openSUSE Leap 42.1

Solution:
Please install the updated package(s).

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2016-9957
BugTraq ID: 95305
http://www.securityfocus.com/bid/95305
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6LKMKVYS7AVB2EXC463FUYN6C6FABHME/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GGHAQI5Q2XDSPGRRKPJJM3A73VWAFSFL/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QHFKIFSFIDXOKFUKAH2MBNXDTY6DYBF6/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7Z2OVERYM6NW3FGVGTJUNSL5ZNFSH2S/
https://security.gentoo.org/glsa/201707-02
https://scarybeastsecurity.blogspot.in/2016/12/redux-compromising-linux-using-snes.html
http://www.openwall.com/lists/oss-security/2016/12/15/11
SuSE Security Announcement: SUSE-SA:2016:3250 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00090.html
SuSE Security Announcement: openSUSE-SA:2017:0022 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00005.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-9958
Common Vulnerability Exposure (CVE) ID: CVE-2016-9959
Common Vulnerability Exposure (CVE) ID: CVE-2016-9960
SuSE Security Announcement: SUSE-SU-2016:3250 (Google Search)
SuSE Security Announcement: openSUSE-SU-2017:0022 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2016-9961
https://scarybeastsecurity.blogspot.cz/2016/12/redux-compromising-linux-using-snes.html

Copyright Copyright (C) 2017 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.851468
Categoría:	SuSE Local Security Checks
Título:	openSUSE: Security Advisory for libgme (openSUSE-SU-2017:0022-1)
Resumen:	The remote host is missing an update for the 'libgme'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'libgme' package(s) announced via the referenced advisory. Vulnerability Insight: This update for libgme fixes the following issues: - CVE-2016-9957, CVE-2016-9958, CVE-2016-9959, CVE-2016-9960, CVE-2016-9961: Various issues were fixed in the handling of SPC music files that could have been exploited for gaining privileges of desktop users. [bsc#1015941] This update was imported from the SUSE:SLE-12:Update update project. Affected Software/OS: libgme on openSUSE Leap 42.1 Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-9957 BugTraq ID: 95305 http://www.securityfocus.com/bid/95305 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6LKMKVYS7AVB2EXC463FUYN6C6FABHME/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GGHAQI5Q2XDSPGRRKPJJM3A73VWAFSFL/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QHFKIFSFIDXOKFUKAH2MBNXDTY6DYBF6/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F7Z2OVERYM6NW3FGVGTJUNSL5ZNFSH2S/ https://security.gentoo.org/glsa/201707-02 https://scarybeastsecurity.blogspot.in/2016/12/redux-compromising-linux-using-snes.html http://www.openwall.com/lists/oss-security/2016/12/15/11 SuSE Security Announcement: SUSE-SA:2016:3250 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00090.html SuSE Security Announcement: openSUSE-SA:2017:0022 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2017-01/msg00005.html Common Vulnerability Exposure (CVE) ID: CVE-2016-9958 Common Vulnerability Exposure (CVE) ID: CVE-2016-9959 Common Vulnerability Exposure (CVE) ID: CVE-2016-9960 SuSE Security Announcement: SUSE-SU-2016:3250 (Google Search) SuSE Security Announcement: openSUSE-SU-2017:0022 (Google Search) Common Vulnerability Exposure (CVE) ID: CVE-2016-9961 https://scarybeastsecurity.blogspot.cz/2016/12/redux-compromising-linux-using-snes.html
Copyright	Copyright (C) 2017 Greenbone Networks GmbH