Test Kennung:	1.3.6.1.4.1.25623.1.0.60449
Kategorie:	Gentoo Local Security Checks
Titel:	Gentoo Security Advisory GLSA 200802-12 (xine-lib)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing updates announced in advisory GLSA 200802-12. xine-lib is vulnerable to multiple buffer overflows when processing FLAC and ASF streams. Solution: All xine-lib users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=media-libs/xine-lib-1.1.10.1' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200802-12 http://bugs.gentoo.org/show_bug.cgi?id=209106 http://bugs.gentoo.org/show_bug.cgi?id=208100 CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2006-1664 BugTraq ID: 17370 http://www.securityfocus.com/bid/17370 https://www.exploit-db.com/exploits/1641 https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00956.html https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00976.html http://www.gentoo.org/security/en/glsa/glsa-200604-16.xml http://sourceforge.net/project/shownotes.php?group_id=9655&release_id=571608 http://www.securityfocus.com/data/vulnerabilities/exploits/xinelib_poc.pl http://securitytracker.com/id?1015868 http://secunia.com/advisories/19853 http://secunia.com/advisories/19856 http://secunia.com/advisories/28666 XForce ISS Database: xinelib-mpeg-bo(25670) https://exchange.xforce.ibmcloud.com/vulnerabilities/25670 Common Vulnerability Exposure (CVE) ID: CVE-2008-0486 BugTraq ID: 27441 http://www.securityfocus.com/bid/27441 Bugtraq: 20080204 CORE-2007-1218: MPlayer 1.0rc2 buffer overflow vulnerability (Google Search) http://www.securityfocus.com/archive/1/487501/100/0/threaded Debian Security Information: DSA-1496 (Google Search) http://www.debian.org/security/2008/dsa-1496 Debian Security Information: DSA-1536 (Google Search) http://www.debian.org/security/2008/dsa-1536 https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00395.html https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00442.html http://lists.grok.org.uk/pipermail/full-disclosure/2008-February/060033.html http://security.gentoo.org/glsa/glsa-200802-12.xml http://security.gentoo.org/glsa/glsa-200803-16.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:045 http://www.mandriva.com/security/advisories?name=MDVSA-2008:046 http://www.coresecurity.com/?action=item&id=2103 http://secunia.com/advisories/28779 http://secunia.com/advisories/28801 http://secunia.com/advisories/28918 http://secunia.com/advisories/28955 http://secunia.com/advisories/28956 http://secunia.com/advisories/28989 http://secunia.com/advisories/29141 http://secunia.com/advisories/29307 http://secunia.com/advisories/29323 http://secunia.com/advisories/29601 http://secunia.com/advisories/31393 http://securityreason.com/securityalert/3608 SuSE Security Announcement: SUSE-SR:2008:006 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00004.html http://www.ubuntu.com/usn/usn-635-1 http://www.vupen.com/english/advisories/2008/0406/references http://www.vupen.com/english/advisories/2008/0421
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.