Anfälligkeitssuche        Suche in 187964 CVE Beschreibungen
und 85075 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.63895
Kategorie:Slackware Local Security Checks
Titel:Slackware Advisory SSA:2009-111-01 udev
Zusammenfassung:The remote host is missing an update as announced;via advisory SSA:2009-111-01.
Beschreibung:Summary:
The remote host is missing an update as announced
via advisory SSA:2009-111-01.

Vulnerability Insight:
New udev packages are available for Slackware 10.2, 11.0, 12.0, 12.1, 12.2,
and -current to fix security issues.

The udev packages in Slackware 10.2, 11.0, 12.0, 12.1, 12.2, and -current
contained a local root hole vulnerability: CVE-2009-1185

The udev packages in Slackware 12.0, 12.1, 12.2, and -current had an integer
overflow which could result in a denial of service: CVE-2009-1186

Note that udev is only used with 2.6 kernels, which are not used by default
with Slackware 10.2 and 11.0.

Solution:
Upgrade to the new package(s).

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2009-1185
BugTraq ID: 34536
http://www.securityfocus.com/bid/34536
Bugtraq: 20090417 rPSA-2009-0063-1 udev (Google Search)
http://www.securityfocus.com/archive/1/502752/100/0/threaded
Bugtraq: 20090711 VMSA-2009-0009 ESX Service Console updates for udev, sudo, and curl (Google Search)
http://www.securityfocus.com/archive/1/504849/100/0/threaded
Debian Security Information: DSA-1772 (Google Search)
http://www.debian.org/security/2009/dsa-1772
https://www.exploit-db.com/exploits/8572
https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00463.html
https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00462.html
http://www.gentoo.org/security/en/glsa/glsa-200904-18.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2009:103
http://www.mandriva.com/security/advisories?name=MDVSA-2009:104
http://wiki.rpath.com/wiki/Advisories:rPSA-2009-0063
https://launchpad.net/bugs/cve/2009-1185
http://lists.vmware.com/pipermail/security-announce/2009/000060.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10925
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5975
http://www.redhat.com/support/errata/RHSA-2009-0427.html
http://www.securitytracker.com/id?1022067
http://secunia.com/advisories/34731
http://secunia.com/advisories/34750
http://secunia.com/advisories/34753
http://secunia.com/advisories/34771
http://secunia.com/advisories/34776
http://secunia.com/advisories/34785
http://secunia.com/advisories/34787
http://secunia.com/advisories/34801
http://secunia.com/advisories/35766
http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.446399
SuSE Security Announcement: SUSE-SA:2009:020 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00006.html
SuSE Security Announcement: SUSE-SA:2009:025 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00012.html
http://www.ubuntu.com/usn/usn-758-1
http://www.vupen.com/english/advisories/2009/1053
http://www.vupen.com/english/advisories/2009/1865
Common Vulnerability Exposure (CVE) ID: CVE-2009-1186
BugTraq ID: 34539
http://www.securityfocus.com/bid/34539
https://launchpad.net/bugs/cve/2009-1186
http://www.securitytracker.com/id?1022068
CopyrightCopyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 85075 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.