Test Kennung:	1.3.6.1.4.1.25623.1.0.851470
Kategorie:	SuSE Local Security Checks
Titel:	openSUSE: Security Advisory for gstreamer-plugins-good (openSUSE-SU-2017:0141-1)
Zusammenfassung:	The remote host is missing an update for the 'gstreamer-plugins-good'; package(s) announced via the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'gstreamer-plugins-good' package(s) announced via the referenced advisory. Vulnerability Insight: This update for gstreamer-plugins-good fixes the following issues: - CVE-2016-9634: Invalid FLIC files could have caused and an out-of-bounds write (bsc#1012102) - CVE-2016-9635: Invalid FLIC files could have caused and an out-of-bounds write (bsc#1012103) - CVE-2016-9636: Prevent maliciously crafted flic files from causing invalid memory writes (bsc#1012104) - CVE-2016-9807: Prevent the reading of invalid memory in flx_decode_chunks, leading to DoS (bsc#1013655) - CVE-2016-9808: Prevent maliciously crafted flic files from causing invalid memory accesses (bsc#1013653) - CVE-2016-9810: Invalid files can be used to extraneous unreferences, leading to invalid memory access and DoS (bsc#1013663) Affected Software/OS: gstreamer-plugins-good on openSUSE Leap 42.1 Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2016-9634 BugTraq ID: 94499 http://www.securityfocus.com/bid/94499 Debian Security Information: DSA-3723 (Google Search) http://www.debian.org/security/2016/dsa-3723 Debian Security Information: DSA-3724 (Google Search) http://www.debian.org/security/2016/dsa-3724 https://security.gentoo.org/glsa/201705-10 https://scarybeastsecurity.blogspot.com/2016/11/0day-exploit-advancing-exploitation.html http://www.openwall.com/lists/oss-security/2016/11/24/2 RedHat Security Advisories: RHSA-2016:2975 http://rhn.redhat.com/errata/RHSA-2016-2975.html RedHat Security Advisories: RHSA-2017:0019 http://rhn.redhat.com/errata/RHSA-2017-0019.html RedHat Security Advisories: RHSA-2017:0020 http://rhn.redhat.com/errata/RHSA-2017-0020.html Common Vulnerability Exposure (CVE) ID: CVE-2016-9635 Common Vulnerability Exposure (CVE) ID: CVE-2016-9636 Common Vulnerability Exposure (CVE) ID: CVE-2016-9807 BugTraq ID: 95148 http://www.securityfocus.com/bid/95148 http://www.openwall.com/lists/oss-security/2016/12/01/2 http://www.openwall.com/lists/oss-security/2016/12/05/8 Common Vulnerability Exposure (CVE) ID: CVE-2016-9808 BugTraq ID: 95446 http://www.securityfocus.com/bid/95446 https://scarybeastsecurity.blogspot.com/2016/11/0day-poc-incorrect-fix-for-gstreamer.html Common Vulnerability Exposure (CVE) ID: CVE-2016-9810 BugTraq ID: 95163 http://www.securityfocus.com/bid/95163 RedHat Security Advisories: RHSA-2017:2060 https://access.redhat.com/errata/RHSA-2017:2060
Copyright	Copyright (C) 2017 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.