Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2015.0199
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2015-0199)
Zusammenfassung:	The remote host is missing an update for the 'perl-XML-LibXML' package(s) announced via the MGASA-2015-0199 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'perl-XML-LibXML' package(s) announced via the MGASA-2015-0199 advisory. Vulnerability Insight: Updated perl-XML-LibXML package fixes security vulnerability: Tilmann Haak from xing.com discovered that XML::LibXML did not respect the expand_entities parameter to disable processing of external entities in some circumstances. This may allow attackers to gain read access to otherwise protected resources, depending on how the library is used (CVE-2015-3451). Affected Software/OS: 'perl-XML-LibXML' package(s) on Mageia 4. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2015-3451 BugTraq ID: 74333 http://www.securityfocus.com/bid/74333 Debian Security Information: DSA-3243 (Google Search) http://www.debian.org/security/2015/dsa-3243 http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157448.html http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157740.html http://www.mandriva.com/security/advisories?name=MDVSA-2015:231 http://www.openwall.com/lists/oss-security/2015/04/25/2 http://www.openwall.com/lists/oss-security/2015/04/30/1 SuSE Security Announcement: openSUSE-SU-2015:1506 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-09/msg00006.html http://www.ubuntu.com/usn/USN-2592-1
Copyright	Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.