Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2017.0152
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2017-0152)
Zusammenfassung:	The remote host is missing an update for the 'openvpn' package(s) announced via the MGASA-2017-0152 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'openvpn' package(s) announced via the MGASA-2017-0152 advisory. Vulnerability Insight: It was discovered that OpenVPN improperly triggered an assert when receiving an oversized control packet in some situations. A remote attacker could use this to cause a denial of service (server or client crash) (CVE-2017-7478). It was discovered that OpenVPN improperly triggered an assert when packet ids rolled over. An authenticated remote attacker could use this to cause a denial of service (application crash) (CVE-2017-7479). Affected Software/OS: 'openvpn' package(s) on Mageia 5. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-7478 BugTraq ID: 98444 http://www.securityfocus.com/bid/98444 https://www.exploit-db.com/exploits/41993/ http://www.securitytracker.com/id/1038473 Common Vulnerability Exposure (CVE) ID: CVE-2017-7479 BugTraq ID: 98443 http://www.securityfocus.com/bid/98443 Debian Security Information: DSA-3900 (Google Search) http://www.debian.org/security/2017/dsa-3900
Copyright	Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.