Test Kennung:	1.3.6.1.4.1.25623.1.0.70777
Kategorie:	Gentoo Local Security Checks
Titel:	Gentoo Security Advisory GLSA 201110-14 (D-Bus)
Zusammenfassung:	The remote host is missing updates announced in;advisory GLSA 201110-14.
Beschreibung:	Summary: The remote host is missing updates announced in advisory GLSA 201110-14. Vulnerability Insight: Multiple vulnerabilities were found in D-Bus, the worst of which allowing for a symlink attack. Solution: All D-Bus users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=sys-apps/dbus-1.4.12' CVSS Score: 4.6 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2010-4352 42580 http://secunia.com/advisories/42580 42760 http://secunia.com/advisories/42760 42911 http://secunia.com/advisories/42911 42960 http://secunia.com/advisories/42960 45377 http://www.securityfocus.com/bid/45377 ADV-2010-3325 http://www.vupen.com/english/advisories/2010/3325 ADV-2011-0161 http://www.vupen.com/english/advisories/2011/0161 ADV-2011-0178 http://www.vupen.com/english/advisories/2011/0178 ADV-2011-0464 http://www.vupen.com/english/advisories/2011/0464 DSA-2149 http://www.debian.org/security/2011/dsa-2149 FEDORA-2010-19166 http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052550.html SUSE-SR:2011:004 http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html USN-1044-1 http://www.ubuntu.com/usn/USN-1044-1 [oss-security] 20101216 CVE Request -- D-BUS -- Stack frame overflow by validating message with excessive number of nested variants http://openwall.com/lists/oss-security/2010/12/16/3 [oss-security] 20101216 Re: CVE Request -- D-BUS -- Stack frame overflow by validating message with excessive number of nested variants http://openwall.com/lists/oss-security/2010/12/16/6 [oss-security] 20101221 Re: Re: CVE Request -- D-BUS -- Stack frame overflow by validating message with excessive number of nested variants http://openwall.com/lists/oss-security/2010/12/21/3 http://cgit.freedesktop.org/dbus/dbus/commit/?id=7d65a3a6ed8815e34a99c680ac3869fde49dbbd4 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705 http://www.remlab.net/op/dbus-variant-recursion.shtml https://bugs.freedesktop.org/show_bug.cgi?id=32321 https://bugzilla.redhat.com/show_bug.cgi?id=663673 openSUSE-SU-2012:1418 http://lists.opensuse.org/opensuse-updates/2012-10/msg00094.html Common Vulnerability Exposure (CVE) ID: CVE-2011-2200 http://lists.freedesktop.org/archives/dbus/2007-March/007357.html http://lists.freedesktop.org/archives/dbus/2011-May/014408.html http://openwall.com/lists/oss-security/2011/06/12/2 http://openwall.com/lists/oss-security/2011/06/12/1 http://openwall.com/lists/oss-security/2011/06/13/12 http://www.redhat.com/support/errata/RHSA-2011-1132.html http://secunia.com/advisories/44896 XForce ISS Database: dbus-nonnative-dos(67974) https://exchange.xforce.ibmcloud.com/vulnerabilities/67974 Common Vulnerability Exposure (CVE) ID: CVE-2011-2533 http://www.securitytracker.com/id?1025720 XForce ISS Database: dbus-configure-symlink(68173) https://exchange.xforce.ibmcloud.com/vulnerabilities/68173
Copyright	Copyright (C) 2012 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.