Test Kennung:	1.3.6.1.4.1.25623.1.0.58651
Kategorie:	Gentoo Local Security Checks
Titel:	Gentoo Security Advisory GLSA 200710-03 (libvorbis)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing updates announced in advisory GLSA 200710-03. A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis. Solution: All libvorbis users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=media-libs/libvorbis-1.2.0' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200710-03 http://bugs.gentoo.org/show_bug.cgi?id=186716 CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2007-3106 BugTraq ID: 25082 http://www.securityfocus.com/bid/25082 Bugtraq: 20070726 libvorbis 1.1.2 - Multiple memory corruption flaws (Google Search) http://www.securityfocus.com/archive/1/474729/100/0/threaded Debian Security Information: DSA-1471 (Google Search) http://www.debian.org/security/2008/dsa-1471 http://security.gentoo.org/glsa/glsa-200710-03.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:167-1 http://www.isecpartners.com/advisories/2007-003-libvorbis.txt https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11449 http://www.redhat.com/support/errata/RHSA-2007-0845.html http://www.redhat.com/support/errata/RHSA-2007-0912.html http://secunia.com/advisories/24923 http://secunia.com/advisories/26087 http://secunia.com/advisories/26232 http://secunia.com/advisories/26299 http://secunia.com/advisories/26429 http://secunia.com/advisories/26535 http://secunia.com/advisories/26865 http://secunia.com/advisories/27099 http://secunia.com/advisories/28614 http://www.ubuntu.com/usn/usn-498-1 http://www.vupen.com/english/advisories/2007/2698 http://www.vupen.com/english/advisories/2007/2760 XForce ISS Database: libvorbis-inverse-code-execution(35622) https://exchange.xforce.ibmcloud.com/vulnerabilities/35622 Common Vulnerability Exposure (CVE) ID: CVE-2007-4029 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10570 http://securitytracker.com/id?1018712 http://secunia.com/advisories/27439 SuSE Security Announcement: SUSE-SR:2007:023 (Google Search) http://www.novell.com/linux/security/advisories/2007_23_sr.html XForce ISS Database: libvorbis-blocksize-code-execution(35624) https://exchange.xforce.ibmcloud.com/vulnerabilities/35624 XForce ISS Database: libvorbis-infoclear-code-execution(35623) https://exchange.xforce.ibmcloud.com/vulnerabilities/35623 Common Vulnerability Exposure (CVE) ID: CVE-2007-4065 http://www.mandriva.com/security/advisories?name=MDKSA-2007:194 http://svn.xiph.org/trunk/vorbis/CHANGES https://trac.xiph.org/changeset/13217 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9173 http://secunia.com/advisories/27170 Common Vulnerability Exposure (CVE) ID: CVE-2007-4066 https://trac.xiph.org/changeset/13162 https://trac.xiph.org/changeset/13169 https://trac.xiph.org/changeset/13170 https://trac.xiph.org/changeset/13172 https://trac.xiph.org/changeset/13211 https://trac.xiph.org/changeset/13215 https://trac.xiph.org/ticket/853 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11453
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.