Test Kennung:	1.3.6.1.4.1.25623.1.0.840822
Kategorie:	Ubuntu Local Security Checks
Titel:	Ubuntu Update for pidgin USN-1273-1
Zusammenfassung:	Ubuntu Update for Linux kernel vulnerabilities USN-1273-1
Beschreibung:	Summary: Ubuntu Update for Linux kernel vulnerabilities USN-1273-1 Vulnerability Insight: Marius Wachtler discovered that Pidgin incorrectly handled malformed YMSG messages in the Yahoo! protocol handler. A remote attacker could send a specially crafted message and cause Pidgin to crash, leading to a denial of service. This issue only affected Ubuntu 10.04 LTS and 10.10. (CVE-2011-1091) Marius Wachtler discovered that Pidgin incorrectly handled HTTP 100 responses in the MSN protocol handler. A remote attacker could send a specially crafted message and cause Pidgin to crash, leading to a denial of service. (CVE-2011-3184) Diego Bauche Madero discovered that Pidgin incorrectly handled UTF-8 sequences in the SILC protocol handler. A remote attacker could send a specially crafted message and cause Pidgin to crash, leading to a denial of service. (CVE-2011-3594) Affected Software/OS: pidgin on Ubuntu 11.04, Ubuntu 10.10, Ubuntu 10.04 LTS Solution: Please Install the Updated Packages. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1091 BugTraq ID: 46837 http://www.securityfocus.com/bid/46837 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055874.html http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056309.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18402 http://www.redhat.com/support/errata/RHSA-2011-0616.html http://www.redhat.com/support/errata/RHSA-2011-1371.html http://secunia.com/advisories/43695 http://secunia.com/advisories/43721 http://secunia.com/advisories/46376 http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.466884 SuSE Security Announcement: openSUSE-SU-2012:0066 (Google Search) https://hermes.opensuse.org/messages/13195955 http://www.vupen.com/english/advisories/2011/0643 http://www.vupen.com/english/advisories/2011/0661 http://www.vupen.com/english/advisories/2011/0669 http://www.vupen.com/english/advisories/2011/0703 XForce ISS Database: pidgin-yahoo-protocol-dos(66055) https://exchange.xforce.ibmcloud.com/vulnerabilities/66055 Common Vulnerability Exposure (CVE) ID: CVE-2011-3184 BugTraq ID: 49268 http://www.securityfocus.com/bid/49268 http://lists.fedoraproject.org/pipermail/package-announce/2011-August/064943.html http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065190.html http://www.openwall.com/lists/oss-security/2011/08/22/10 http://www.openwall.com/lists/oss-security/2011/08/22/12 http://www.openwall.com/lists/oss-security/2011/08/22/4 http://www.openwall.com/lists/oss-security/2011/08/22/7 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18284 http://securitytracker.com/id?1025961 http://secunia.com/advisories/45663 http://secunia.com/advisories/45916 XForce ISS Database: pidgin-msn-protocol-dos(69341) https://exchange.xforce.ibmcloud.com/vulnerabilities/69341 Common Vulnerability Exposure (CVE) ID: CVE-2011-3594 http://www.mandriva.com/security/advisories?name=MDVSA-2011:183 http://developer.pidgin.im/viewmtn/revision/diff/be5e66abad2af29604bc794cc4c6600ab12751f3/with/7eb1f6d56cc58bbb5b56b7df53955d36b9b419b8 https://bugzilla.redhat.com/show_bug.cgi?id=743481 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18034
Copyright	Copyright (c) 2011 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.