Red Hat Local Security Checks : RedHat Security Advisory RHSA-2009:1536

Preis/Funktionszusammenfassung | Bestellen | Neue Anfälligkeiten | Vertraulichkeit | Anfälligkeiten Suche

Anfälligkeitssuche		Suche in 61204 CVE Beschreibungen und 32582 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.66123

Kategorie: Red Hat Local Security Checks

Titel: RedHat Security Advisory RHSA-2009:1536

Zusammenfassung: Redhat Security Advisory RHSA-2009:1536

Beschreibung: The remote host is missing updates announced in
advisory RHSA-2009:1536.

Pidgin is an instant messaging program which can log in to multiple
accounts on multiple instant messaging networks simultaneously. The AOL
Open System for Communication in Realtime (OSCAR) protocol is used by the
AOL ICQ and AIM instant messaging systems.

An invalid pointer dereference bug was found in the way the Pidgin OSCAR
protocol implementation processed lists of contacts. A remote attacker
could send a specially-crafted contact list to a user running Pidgin,
causing Pidgin to crash. (CVE-2009-3615)

These packages upgrade Pidgin to version 2.6.3. Refer to the Pidgin release
notes for a full list of changes: http://developer.pidgin.im/wiki/ChangeLog

All Pidgin users should upgrade to these updated packages, which correct
this issue. Pidgin must be restarted for this update to take effect.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2009-1536.html
http://www.redhat.com/security/updates/classification/#moderate

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2009-3615
http://www.mandriva.com/security/advisories?name=MDVSA-2010:085
BugTraq ID: 36719
http://www.securityfocus.com/bid/36719
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9414
http://secunia.com/advisories/37017
http://secunia.com/advisories/37072
http://www.vupen.com/english/advisories/2009/2949
http://www.vupen.com/english/advisories/2009/2951
http://www.vupen.com/english/advisories/2010/1020
XForce ISS Database: pidgin-oscar-protocol-dos(53807)
http://xforce.iss.net/xforce/xfdb/53807

Copyright Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 32582 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Registrierung eines neuen Benutzers
Email:

Benutzerkennung:

Passwort:

Bitte schicken Sie mir den monatlichen Newsletter, der mich über die neuesten Services, Verbesserungen und Umfragen informiert.

Bitte schicken Sie mir eine Anfälligkeitstest Benachrichtigung, wenn ein neuer Test hinzugefügt wird.

Datenschutz

Anmeldung für registrierte Benutzer

Benutzerkennung:

Passwort:

Benutzerkennung oder Passwort vergessen?

Email/Benutzerkennung:

Test Kennung:	1.3.6.1.4.1.25623.1.0.66123
Kategorie:	Red Hat Local Security Checks
Titel:	RedHat Security Advisory RHSA-2009:1536
Zusammenfassung:	Redhat Security Advisory RHSA-2009:1536
Beschreibung:	The remote host is missing updates announced in advisory RHSA-2009:1536. Pidgin is an instant messaging program which can log in to multiple accounts on multiple instant messaging networks simultaneously. The AOL Open System for Communication in Realtime (OSCAR) protocol is used by the AOL ICQ and AIM instant messaging systems. An invalid pointer dereference bug was found in the way the Pidgin OSCAR protocol implementation processed lists of contacts. A remote attacker could send a specially-crafted contact list to a user running Pidgin, causing Pidgin to crash. (CVE-2009-3615) These packages upgrade Pidgin to version 2.6.3. Refer to the Pidgin release notes for a full list of changes: http://developer.pidgin.im/wiki/ChangeLog All Pidgin users should upgrade to these updated packages, which correct this issue. Pidgin must be restarted for this update to take effect. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2009-1536.html http://www.redhat.com/security/updates/classification/#moderate
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2009-3615 http://www.mandriva.com/security/advisories?name=MDVSA-2010:085 BugTraq ID: 36719 http://www.securityfocus.com/bid/36719 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9414 http://secunia.com/advisories/37017 http://secunia.com/advisories/37072 http://www.vupen.com/english/advisories/2009/2949 http://www.vupen.com/english/advisories/2009/2951 http://www.vupen.com/english/advisories/2010/1020 XForce ISS Database: pidgin-oscar-protocol-dos(53807) http://xforce.iss.net/xforce/xfdb/53807
Copyright	Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com