Huawei EulerOS Local Security Checks : Huawei EulerOS: Security Advisory for libXrandr (EulerOS-SA-2020-2005)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.2.2020.2005

Categoría: Huawei EulerOS Local Security Checks

Título: Huawei EulerOS: Security Advisory for libXrandr (EulerOS-SA-2020-2005)

Resumen: The remote host is missing an update for the Huawei EulerOS 'libXrandr' package(s) announced via the EulerOS-SA-2020-2005 advisory.

Descripción: Summary:
The remote host is missing an update for the Huawei EulerOS 'libXrandr' package(s) announced via the EulerOS-SA-2020-2005 advisory.

Vulnerability Insight:
X.org libXrandr before 1.5.1 allows remote X servers to trigger out-of-bounds write operations by leveraging mishandling of reply data.(CVE-2016-7948)

Multiple integer overflows in X.org libXrandr before 1.5.1 allow remote X servers to trigger out-of-bounds write operations via a crafted response.(CVE-2016-7947)

Affected Software/OS:
'libXrandr' package(s) on Huawei EulerOS Virtualization for ARM 64 3.0.6.0.

Solution:
Please install the updated package(s).

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2016-7947
BugTraq ID: 93365
http://www.securityfocus.com/bid/93365
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y7662OZWCSTLRPKS6R3E4Y4M26BSVAAM/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/74FFOHWYIKQZTJLRJWDMJ4W3WYBELUUG/
https://security.gentoo.org/glsa/201704-03
http://www.openwall.com/lists/oss-security/2016/10/04/4
http://www.openwall.com/lists/oss-security/2016/10/04/2
https://lists.x.org/archives/xorg-announce/2016-October/002720.html
http://www.securitytracker.com/id/1036945
Common Vulnerability Exposure (CVE) ID: CVE-2016-7948
BugTraq ID: 93373
http://www.securityfocus.com/bid/93373

Copyright Copyright (C) 2020 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.2.2020.2005
Categoría:	Huawei EulerOS Local Security Checks
Título:	Huawei EulerOS: Security Advisory for libXrandr (EulerOS-SA-2020-2005)
Resumen:	The remote host is missing an update for the Huawei EulerOS 'libXrandr' package(s) announced via the EulerOS-SA-2020-2005 advisory.
Descripción:	Summary: The remote host is missing an update for the Huawei EulerOS 'libXrandr' package(s) announced via the EulerOS-SA-2020-2005 advisory. Vulnerability Insight: X.org libXrandr before 1.5.1 allows remote X servers to trigger out-of-bounds write operations by leveraging mishandling of reply data.(CVE-2016-7948) Multiple integer overflows in X.org libXrandr before 1.5.1 allow remote X servers to trigger out-of-bounds write operations via a crafted response.(CVE-2016-7947) Affected Software/OS: 'libXrandr' package(s) on Huawei EulerOS Virtualization for ARM 64 3.0.6.0. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-7947 BugTraq ID: 93365 http://www.securityfocus.com/bid/93365 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y7662OZWCSTLRPKS6R3E4Y4M26BSVAAM/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/74FFOHWYIKQZTJLRJWDMJ4W3WYBELUUG/ https://security.gentoo.org/glsa/201704-03 http://www.openwall.com/lists/oss-security/2016/10/04/4 http://www.openwall.com/lists/oss-security/2016/10/04/2 https://lists.x.org/archives/xorg-announce/2016-October/002720.html http://www.securitytracker.com/id/1036945 Common Vulnerability Exposure (CVE) ID: CVE-2016-7948 BugTraq ID: 93373 http://www.securityfocus.com/bid/93373
Copyright	Copyright (C) 2020 Greenbone Networks GmbH