Test Kennung:	1.3.6.1.4.1.25623.1.0.53900
Kategorie:	Slackware Local Security Checks
Titel:	Slackware: Security Advisory (SSA:2003-141-03)
Zusammenfassung:	The remote host is missing an update for the 'glibc' package(s) announced via the SSA:2003-141-03 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'glibc' package(s) announced via the SSA:2003-141-03 advisory. Vulnerability Insight: An integer overflow in the xdrmem_getbytes() function found in the glibc library has been fixed. This could allow a remote attacker to execute arbitrary code by exploiting RPC service that use xdrmem_getbytes(). None of the default RPC services provided by Slackware appear to use this function, but third-party applications may make use of it. We recommend upgrading to these new glibc packages. Here are the details from the Slackware 9.0 ChangeLog: +--------------------------+ Tue May 20 20:13:09 PDT 2003 patches/packages/glibc-2.3.1-i386-4.tgz: Patched, recompiled. (* Security fix *) patches/packages/glibc-debug-2.3.1-i386-4.tgz: Patched, recompiled. (* Security fix *) patches/packages/glibc-i18n-2.3.1-noarch-4.tgz: Rebuilt. patches/packages/glibc-profile-2.3.1-i386-4.tgz: Patched, recompiled. (* Security fix *) patches/packages/glibc-solibs-2.3.1-i386-4.tgz: Patched a buffer overflow in some dead code (xdrmem_getbytes(), which we couldn't find used by anything, but it doesn't hurt to patch it anyway) (* Security fix *) patches/packages/glibc-zoneinfo-2.3.1-noarch-4.tgz: Rebuilt. +--------------------------+ Affected Software/OS: 'glibc' package(s) on Slackware 8.1, Slackware 9.0. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Copyright	Copyright (C) 2012 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.