Test Kennung:	1.3.6.1.4.1.25623.1.0.55740
Kategorie:	Fedora Local Security Checks
Titel:	Fedora Core 3 FEDORA-2005-1032 (gdb)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing an update to gdb announced via advisory FEDORA-2005-1032. GDB, the GNU debugger, allows you to debug programs written in C, C++, and other languages, by executing them in a controlled fashion and printing their data. Update Information: This is an fc3 update for gdb regarding security issues: CVE-2005-1704 Integer Overflow in gdb This problem is that gdb's internal copy of bfd does not protect against heap-based overflow. CVE-2005-1705 gdb arbitrary command execution This problem allows unprotected .gdbinit files to execute arbitrary commands during gdb startup. Fixes for both problems are found in: gdb-6.1post-1.20040607.43.0.1 * Tue Oct 4 2005 Jeff Johnston 1.200400607.43.0.1 - Security errata to handle untrusted .gdbinit and bfd integer overflow. - Bugzilla 158683 and bugzilla 158686 Solution: Apply the appropriate updates. This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/ This update can also be installed with the Update Agent you can launch the Update Agent with the 'up2date' command. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2005-1032 Risk factor : High CVSS Score: 7.2
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2005-1704 BugTraq ID: 13697 http://www.securityfocus.com/bid/13697 Bugtraq: 20070404 VMSA-2007-0003 VMware ESX 3.0.1 and 3.0.0 server security updates (Google Search) http://www.securityfocus.com/archive/1/464745/100/0/threaded Conectiva Linux advisory: CLA-2006:1060 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=001060 http://security.gentoo.org/glsa/glsa-200505-15.xml http://www.gentoo.org/security/en/glsa/glsa-200506-01.xml http://www.mandriva.com/security/advisories?name=MDKSA-2005:095 http://www.mandriva.com/security/advisories?name=MDKSA-2005:215 http://www.osvdb.org/16757 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9071 http://www.redhat.com/support/errata/RHSA-2005-659.html http://www.redhat.com/support/errata/RHSA-2005-673.html http://www.redhat.com/support/errata/RHSA-2005-709.html http://www.redhat.com/support/errata/RHSA-2005-763.html http://www.redhat.com/support/errata/RHSA-2005-801.html http://www.redhat.com/support/errata/RHSA-2006-0354.html http://www.redhat.com/support/errata/RHSA-2006-0368.html http://securitytracker.com/id?1016544 http://secunia.com/advisories/15527 http://secunia.com/advisories/17001 http://secunia.com/advisories/17072 http://secunia.com/advisories/17135 http://secunia.com/advisories/17257 http://secunia.com/advisories/17356 http://secunia.com/advisories/17718 http://secunia.com/advisories/18506 http://secunia.com/advisories/21122 http://secunia.com/advisories/21262 http://secunia.com/advisories/21717 http://secunia.com/advisories/24788 SGI Security Advisory: 20060703-01-P ftp://patches.sgi.com/support/free/security/advisories/20060703-01-U.asc http://www.trustix.org/errata/2005/0025/ https://usn.ubuntu.com/136-1/ http://www.vupen.com/english/advisories/2007/1267 Common Vulnerability Exposure (CVE) ID: CVE-2005-1705 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11072
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.