Test Kennung:	1.3.6.1.4.1.25623.1.0.892290
Kategorie:	Debian Local Security Checks
Titel:	Debian LTS: Security Advisory for e2fsprogs (DLA-2290-1)
Zusammenfassung:	The remote host is missing an update for the 'e2fsprogs'; package(s) announced via the DLA-2290-1 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'e2fsprogs' package(s) announced via the DLA-2290-1 advisory. Vulnerability Insight: An issue has been found in e2fsprogs, a package that contains ext2/ext3/ext4 file system utilities. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability. Affected Software/OS: 'e2fsprogs' package(s) on Debian Linux. Solution: For Debian 9 stretch, this problem has been fixed in version 1.43.4-2+deb9u2. We recommend that you upgrade your e2fsprogs packages. CVSS Score: 4.6 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2019-5188 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6DOBCYQKCTTWXBLMUPJ5TX3FY7JNCOKY/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2AKETJ6BREDUHRWQTV35SPGG5C6H7KSI/ https://lists.debian.org/debian-lts-announce/2020/03/msg00030.html https://lists.debian.org/debian-lts-announce/2020/07/msg00021.html SuSE Security Announcement: openSUSE-SU-2020:0166 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00004.html https://usn.ubuntu.com/4249-1/
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.