Test Kennung:	1.3.6.1.4.1.25623.1.0.57377
Kategorie:	FreeBSD Local Security Checks
Titel:	FreeBSD Security Advisory (FreeBSD-SA-06:21.gzip.asc)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:21.gzip.asc gzip is a file compression utility. Multiple programming errors have been found in gzip which can be triggered when gzip is decompressing files. These errors include insufficient bounds checks in buffer use, a NULL pointer dereference, and a potential infinite loop. Solution: Upgrade your system to the appropriate stable release or security branch dated after the correction date http://www.securityspace.com/smysecure/catid.html?in=FreeBSD-SA-06:21.gzip.asc CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2006-4334 http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html BugTraq ID: 20101 http://www.securityfocus.com/bid/20101 Bugtraq: 20060919 rPSA-2006-0170-1 gzip (Google Search) http://www.securityfocus.com/archive/1/446426/100/0/threaded Bugtraq: 20070330 VMSA-2007-0002 VMware ESX security updates (Google Search) http://www.securityfocus.com/archive/1/464268/100/0/threaded Cert/CC Advisory: TA06-333A http://www.us-cert.gov/cas/techalerts/TA06-333A.html CERT/CC vulnerability note: VU#933712 http://www.kb.cert.org/vuls/id/933712 Debian Security Information: DSA-1181 (Google Search) http://www.us.debian.org/security/2006/dsa-1181 http://www.securityfocus.com/archive/1/451324/100/0/threaded FreeBSD Security Advisory: FreeBSD-SA-06:21 http://security.freebsd.org/advisories/FreeBSD-SA-06:21.gzip.asc http://security.gentoo.org/glsa/glsa-200609-13.xml HPdes Security Advisory: HPSBTU02168 http://www.securityfocus.com/archive/1/450078/100/0/threaded HPdes Security Advisory: HPSBUX02195 http://www.securityfocus.com/archive/1/462007/100/0/threaded HPdes Security Advisory: SSRT061237 http://www.mandriva.com/security/advisories?name=MDKSA-2006:167 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=204676 http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.020-gzip.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10527 http://www.redhat.com/support/errata/RHSA-2006-0667.html http://securitytracker.com/id?1016883 http://secunia.com/advisories/21996 http://secunia.com/advisories/22002 http://secunia.com/advisories/22009 http://secunia.com/advisories/22012 http://secunia.com/advisories/22017 http://secunia.com/advisories/22027 http://secunia.com/advisories/22033 http://secunia.com/advisories/22034 http://secunia.com/advisories/22043 http://secunia.com/advisories/22085 http://secunia.com/advisories/22101 http://secunia.com/advisories/22435 http://secunia.com/advisories/22487 http://secunia.com/advisories/22661 http://secunia.com/advisories/23155 http://secunia.com/advisories/23679 http://secunia.com/advisories/24435 http://secunia.com/advisories/24636 SGI Security Advisory: 20061001-01-P ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.555852 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102766-1 SuSE Security Announcement: SUSE-SA:2006:056 (Google Search) http://www.novell.com/linux/security/advisories/2006_56_gzip.html http://www.trustix.org/errata/2006/0052/ http://www.ubuntu.com/usn/usn-349-1 http://www.vupen.com/english/advisories/2006/4275 http://www.vupen.com/english/advisories/2006/4750 http://www.vupen.com/english/advisories/2007/0092 http://www.vupen.com/english/advisories/2007/0832 http://www.vupen.com/english/advisories/2007/1171 XForce ISS Database: gzip-huftbuild-code-execution(29038) https://exchange.xforce.ibmcloud.com/vulnerabilities/29038 Common Vulnerability Exposure (CVE) ID: CVE-2006-4338 http://www.gentoo.org/security/en/glsa/glsa-200611-24.xml http://www.osvdb.org/29008 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11290 http://secunia.com/advisories/23153 http://secunia.com/advisories/23156 http://www.vupen.com/english/advisories/2006/3695 http://www.vupen.com/english/advisories/2006/4760 XForce ISS Database: gzip-lhz-dos(29046) https://exchange.xforce.ibmcloud.com/vulnerabilities/29046
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.