Test Kennung:	1.3.6.1.4.1.25623.1.0.60890
Kategorie:	FreeBSD Local Security Checks
Titel:	FreeBSD Ports: python23
Zusammenfassung:	The remote host is missing an update to the system; as announced in the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following packages are affected: python23 python24 python25 CVE-2008-1721 Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary code via a negative signed integer, which triggers insufficient memory allocation and a buffer overflow. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2008-1721 http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html BugTraq ID: 28715 http://www.securityfocus.com/bid/28715 Bugtraq: 20080409 IOActive Security Advisory: Buffer overflow in Python zlib extension module (Google Search) http://www.securityfocus.com/archive/1/490690/100/0/threaded Bugtraq: 20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components (Google Search) http://www.securityfocus.com/archive/1/507985/100/0/threaded Debian Security Information: DSA-1551 (Google Search) http://www.debian.org/security/2008/dsa-1551 Debian Security Information: DSA-1620 (Google Search) http://www.debian.org/security/2008/dsa-1620 http://security.gentoo.org/glsa/glsa-200807-01.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:085 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8249 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8494 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9407 http://www.securitytracker.com/id?1019823 http://secunia.com/advisories/29889 http://secunia.com/advisories/29955 http://secunia.com/advisories/30872 http://secunia.com/advisories/31255 http://secunia.com/advisories/31358 http://secunia.com/advisories/31365 http://secunia.com/advisories/33937 http://secunia.com/advisories/37471 http://secunia.com/advisories/38675 http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.525289 http://securityreason.com/securityalert/3802 http://www.ubuntu.com/usn/usn-632-1 http://www.vupen.com/english/advisories/2008/1229/references http://www.vupen.com/english/advisories/2009/3316 XForce ISS Database: zlib-pystringfromstringandsize-bo(41748) https://exchange.xforce.ibmcloud.com/vulnerabilities/41748
Copyright	Copyright (C) 2008 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.