Huawei EulerOS Local Security Checks : Huawei EulerOS: Security Advisory for libXtst (EulerOS-SA-2020-1093)

Anfälligkeitssuche		Suche in 219043 CVE Beschreibungen und 99761 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.1.2.2020.1093

Kategorie: Huawei EulerOS Local Security Checks

Titel: Huawei EulerOS: Security Advisory for libXtst (EulerOS-SA-2020-1093)

Zusammenfassung: The remote host is missing an update for the Huawei EulerOS 'libXtst' package(s) announced via the EulerOS-SA-2020-1093 advisory.

Beschreibung: Summary:
The remote host is missing an update for the Huawei EulerOS 'libXtst' package(s) announced via the EulerOS-SA-2020-1093 advisory.

Vulnerability Insight:
Multiple integer overflows in X.org libXtst before 1.2.3 allow remote X servers to trigger out-of-bounds memory access operations by leveraging the lack of range checks.(CVE-2016-7951)

X.org libXtst before 1.2.3 allows remote X servers to cause a denial of service (infinite loop) via a reply in the (1) XRecordStartOfData, (2) XRecordEndOfData, or (3) XRecordClientDied category without a client sequence and with attached data.(CVE-2016-7952)

Affected Software/OS:
'libXtst' package(s) on Huawei EulerOS V2.0SP2.

Solution:
Please install the updated package(s).

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2016-7951
BugTraq ID: 93370
http://www.securityfocus.com/bid/93370
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AFLHX7WNEUXXDAGR324T35L5P6RRR7GE/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RVEUZRHYY3AJEKMFQ4DS7DX3Y2AICFP7/
http://www.openwall.com/lists/oss-security/2016/10/04/4
http://www.openwall.com/lists/oss-security/2016/10/04/2
https://lists.x.org/archives/xorg-announce/2016-October/002720.html
http://www.securitytracker.com/id/1036945
Common Vulnerability Exposure (CVE) ID: CVE-2016-7952
BugTraq ID: 93375
http://www.securityfocus.com/bid/93375

Copyright Copyright (C) 2020 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.1.2.2020.1093
Kategorie:	Huawei EulerOS Local Security Checks
Titel:	Huawei EulerOS: Security Advisory for libXtst (EulerOS-SA-2020-1093)
Zusammenfassung:	The remote host is missing an update for the Huawei EulerOS 'libXtst' package(s) announced via the EulerOS-SA-2020-1093 advisory.
Beschreibung:	Summary: The remote host is missing an update for the Huawei EulerOS 'libXtst' package(s) announced via the EulerOS-SA-2020-1093 advisory. Vulnerability Insight: Multiple integer overflows in X.org libXtst before 1.2.3 allow remote X servers to trigger out-of-bounds memory access operations by leveraging the lack of range checks.(CVE-2016-7951) X.org libXtst before 1.2.3 allows remote X servers to cause a denial of service (infinite loop) via a reply in the (1) XRecordStartOfData, (2) XRecordEndOfData, or (3) XRecordClientDied category without a client sequence and with attached data.(CVE-2016-7952) Affected Software/OS: 'libXtst' package(s) on Huawei EulerOS V2.0SP2. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2016-7951 BugTraq ID: 93370 http://www.securityfocus.com/bid/93370 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AFLHX7WNEUXXDAGR324T35L5P6RRR7GE/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RVEUZRHYY3AJEKMFQ4DS7DX3Y2AICFP7/ http://www.openwall.com/lists/oss-security/2016/10/04/4 http://www.openwall.com/lists/oss-security/2016/10/04/2 https://lists.x.org/archives/xorg-announce/2016-October/002720.html http://www.securitytracker.com/id/1036945 Common Vulnerability Exposure (CVE) ID: CVE-2016-7952 BugTraq ID: 93375 http://www.securityfocus.com/bid/93375
Copyright	Copyright (C) 2020 Greenbone Networks GmbH