Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2014.0520
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2014-0520)
Zusammenfassung:	The remote host is missing an update for the 'graphviz' package(s) announced via the MGASA-2014-0520 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'graphviz' package(s) announced via the MGASA-2014-0520 advisory. Vulnerability Insight: Updated graphviz packages fix security vulnerability: Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vector, which are not properly handled in an error string (CVE-2014-9157). Affected Software/OS: 'graphviz' package(s) on Mageia 4. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2014-9157 BugTraq ID: 71283 http://www.securityfocus.com/bid/71283 Debian Security Information: DSA-3098 (Google Search) http://www.debian.org/security/2014/dsa-3098 http://www.mandriva.com/security/advisories?name=MDVSA-2014:248 http://www.mandriva.com/security/advisories?name=MDVSA-2015:187 http://seclists.org/oss-sec/2014/q4/784 http://seclists.org/oss-sec/2014/q4/872 http://secunia.com/advisories/60166 XForce ISS Database: graphviz-format-sting(98949) https://exchange.xforce.ibmcloud.com/vulnerabilities/98949
Copyright	Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.