Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2020.0216
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2020-0216)
Zusammenfassung:	The remote host is missing an update for the 'nmap' package(s) announced via the MGASA-2020-0216 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'nmap' package(s) announced via the MGASA-2020-0216 advisory. Vulnerability Insight: Updated nmap packages fix security vulnerability: nse_libssh2.cc in Nmap 7.70 is subject to a denial of service condition due to a double free when an SSH connection fails, as demonstrated by a leading \n character to ssh-brute.nse or ssh-auth-methods.nse (CVE-2017-18594). Also, when a server forced a protocol and did not return TLS ALPN extension, this caused an infinite loop. Affected Software/OS: 'nmap' package(s) on Mageia 7. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-18594 https://github.com/AMatchandaHaystack/Research/blob/master/Nmap%26libsshDF https://github.com/nmap/nmap/commit/350bbe0597d37ad67abe5fef8fba984707b4e9ad https://github.com/nmap/nmap/issues/1077 https://github.com/nmap/nmap/issues/1227 https://seclists.org/nmap-announce/2019/0 https://seclists.org/nmap-dev/2018/q2/45 SuSE Security Announcement: openSUSE-SU-2019:2198 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00073.html SuSE Security Announcement: openSUSE-SU-2019:2200 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00075.html
Copyright	Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.