ID de Prueba:	1.3.6.1.4.1.25623.1.1.2.2019.2614
Categoría:	Huawei EulerOS Local Security Checks
Título:	Huawei EulerOS: Security Advisory for librsvg2 (EulerOS-SA-2019-2614)
Resumen:	The remote host is missing an update for the Huawei EulerOS 'librsvg2' package(s) announced via the EulerOS-SA-2019-2614 advisory.
Descripción:	Summary: The remote host is missing an update for the Huawei EulerOS 'librsvg2' package(s) announced via the EulerOS-SA-2019-2614 advisory. Vulnerability Insight: librsvg before 2.40.12 allows context-dependent attackers to cause a denial of service (infinite loop, stack consumption, and application crash) via cyclic references in an SVG document.(CVE-2015-7558) The _rsvg_node_poly_build_path function in rsvg-shapes.c in librsvg before 2.40.7 allows context-dependent attackers to cause a denial of service (out-of-bounds heap read) via an odd number of elements in a coordinate pair in an SVG document.(CVE-2015-7557) Affected Software/OS: 'librsvg2' package(s) on Huawei EulerOS V2.0SP3. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-7557 http://www.openwall.com/lists/oss-security/2015/12/21/5 Common Vulnerability Exposure (CVE) ID: CVE-2015-7558 Debian Security Information: DSA-3584 (Google Search) http://www.debian.org/security/2016/dsa-3584 http://www.openwall.com/lists/oss-security/2016/04/30/3
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.