Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2019.0312
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2019-0312)
Zusammenfassung:	The remote host is missing an update for the 'libsoup' package(s) announced via the MGASA-2019-0312 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'libsoup' package(s) announced via the MGASA-2019-0312 advisory. Vulnerability Insight: Updated libsoup package fixes security vulnerability: It was discovered that libsoup incorrectly handled parsing certain NTLM messages. If a user or automated system were tricked into connecting to a malicious server, a remote attacker could possibly use this issue to cause a denial of service (CVE-2019-17266). Affected Software/OS: 'libsoup' package(s) on Mageia 7. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2019-17266 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=941912 https://github.com/Kirin-say/Vulnerabilities/blob/master/CVE-2019-17266_POC.md https://gitlab.gnome.org/GNOME/libsoup/commit/88b7dff4467f4151afae244ea7d1223753cd05ab https://gitlab.gnome.org/GNOME/libsoup/commit/f8a54ac85eec2008c85393f331cdd251af8266ad https://gitlab.gnome.org/GNOME/libsoup/issues/173 https://security-tracker.debian.org/tracker/CVE-2019-17266 https://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg1705054.html https://usn.ubuntu.com/4152-1/
Copyright	Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.