Test Kennung:	1.3.6.1.4.1.25623.1.0.891751
Kategorie:	Debian Local Security Checks
Titel:	Debian LTS: Security Advisory for suricata (DLA-1751-1)
Zusammenfassung:	The remote host is missing an update for the 'suricata'; package(s) announced via the DLA-1751-1 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'suricata' package(s) announced via the DLA-1751-1 advisory. Vulnerability Insight: Multiple vulnerabilities have been found in suricata, the network threat detection engine: CVE-2018-10242 Missing length check causing out-of-bounds read in SSHParseBanner (app-layer-ssh.c). Remote attackers might leverage this vulnerability to cause DoS or potentially unauthorized disclosure of information. CVE-2018-10243 Unexpected end of Authorization field causing heap-based buffer over-read in htp_parse_authorization_digest (htp_parsers.c, from the embedded copy of LibHTP). Remote attackers might leverage this vulnerability to cause DoS or potentially unauthorized disclosure of information. Affected Software/OS: 'suricata' package(s) on Debian Linux. Solution: For Debian 8 'Jessie', these problems have been fixed in version 2.0.7-2+deb8u4. We recommend that you upgrade your suricata packages. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2018-10242 Common Vulnerability Exposure (CVE) ID: CVE-2018-10243
Copyright	Copyright (C) 2019 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.