Test Kennung:	1.3.6.1.4.1.25623.1.0.59000
Kategorie:	Slackware Local Security Checks
Titel:	Slackware: Security Advisory (SSA:2007-230-01)
Zusammenfassung:	The remote host is missing an update for the 'tcpdump' package(s) announced via the SSA:2007-230-01 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'tcpdump' package(s) announced via the SSA:2007-230-01 advisory. Vulnerability Insight: New tcpdump packages are available for Slackware 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, and 12.0 to fix a security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database: [link moved to references] Here are the details from the Slackware 12.0 ChangeLog: +--------------------------+ patches/packages/tcpdump-3.9.7-i486-1_slack12.0.tgz: Upgraded to libpcap-0.9.7, tcpdump-3.9.7. This new version fixes an integer overflow in the BGP dissector which could possibly allow remote attackers to crash tcpdump or to execute arbitrary code. For more information, see: [link moved to references] (* Security fix *) +--------------------------+ Affected Software/OS: 'tcpdump' package(s) on Slackware 9.0, Slackware 9.1, Slackware 10.0, Slackware 10.1, Slackware 10.2, Slackware 11.0, Slackware 12.0. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2007-3798 http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html BugTraq ID: 24965 http://www.securityfocus.com/bid/24965 Bugtraq: 20070720 rPSA-2007-0147-1 tcpdump (Google Search) http://www.securityfocus.com/archive/1/474225/100/0/threaded Cert/CC Advisory: TA07-352A http://www.us-cert.gov/cas/techalerts/TA07-352A.html Debian Security Information: DSA-1353 (Google Search) http://www.debian.org/security/2007/dsa-1353 FreeBSD Security Advisory: FreeBSD-SA-07:06 http://security.freebsd.org/advisories/FreeBSD-SA-07:06.tcpdump.asc http://security.gentoo.org/glsa/glsa-200707-14.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:148 http://cvs.tcpdump.org/cgi-bin/cvsweb/tcpdump/print-bgp.c?r1=1.91.2.11&r2=1.91.2.12 http://www.digit-labs.org/files/exploits/private/tcpdump-bgp.c https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9771 http://www.redhat.com/support/errata/RHSA-2007-0368.html http://www.redhat.com/support/errata/RHSA-2007-0387.html http://www.securitytracker.com/id?1018434 http://secunia.com/advisories/26135 http://secunia.com/advisories/26168 http://secunia.com/advisories/26223 http://secunia.com/advisories/26231 http://secunia.com/advisories/26263 http://secunia.com/advisories/26266 http://secunia.com/advisories/26286 http://secunia.com/advisories/26395 http://secunia.com/advisories/26404 http://secunia.com/advisories/26521 http://secunia.com/advisories/27580 http://secunia.com/advisories/28136 http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.449313 SuSE Security Announcement: SUSE-SR:2007:016 (Google Search) http://www.novell.com/linux/security/advisories/2007_16_sr.html http://www.trustix.org/errata/2007/0023/ TurboLinux Advisory: TLSA-2007-46 http://www.turbolinux.com/security/2007/TLSA-2007-46.txt http://www.ubuntu.com/usn/usn-492-1 http://www.vupen.com/english/advisories/2007/2578 http://www.vupen.com/english/advisories/2007/4238
Copyright	Copyright (C) 2012 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.