Gentoo Local Security Checks : Gentoo Security Advisory GLSA 201309-18

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.121032

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 201309-18

Resumen: Gentoo Linux Local Security Checks GLSA 201309-18

Descripción: Summary:
Gentoo Linux Local Security Checks GLSA 201309-18

Vulnerability Insight:
An error in the virNetMessageFree() function in rpc/virnetserverclient.c can lead to a use-after-free. Additionally, a socket leak in the remoteDispatchStoragePoolListAllVolumes command can lead to file descriptor exhaustion.

Solution:
Update the affected packages to the latest available version.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2013-0170
BugTraq ID: 57578
http://www.securityfocus.com/bid/57578
http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098398.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098370.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098326.html
http://osvdb.org/89644
RedHat Security Advisories: RHSA-2013:0199
http://rhn.redhat.com/errata/RHSA-2013-0199.html
http://www.securitytracker.com/id/1028047
http://secunia.com/advisories/52001
http://secunia.com/advisories/52003
SuSE Security Announcement: SUSE-SU-2013:0320 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00016.html
SuSE Security Announcement: openSUSE-SU-2013:0274 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00001.html
SuSE Security Announcement: openSUSE-SU-2013:0275 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00002.html
http://www.ubuntu.com/usn/USN-1708-1
XForce ISS Database: libvirt-virnetmessagefree-code-exec(81552)
https://exchange.xforce.ibmcloud.com/vulnerabilities/81552
Common Vulnerability Exposure (CVE) ID: CVE-2013-1962
BugTraq ID: 59937
http://www.securityfocus.com/bid/59937
http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106906.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106921.html
https://www.redhat.com/archives/libvir-list/2013-May/msg01222.html
http://www.openwall.com/lists/oss-security/2013/05/16/9
http://osvdb.org/93451
RedHat Security Advisories: RHSA-2013:0831
http://rhn.redhat.com/errata/RHSA-2013-0831.html
http://www.securitytracker.com/id/1028577
http://secunia.com/advisories/53440
http://secunia.com/advisories/53475
SuSE Security Announcement: openSUSE-SU-2013:0885 (Google Search)
http://lists.opensuse.org/opensuse-updates/2013-06/msg00022.html
http://www.ubuntu.com/usn/USN-1895-1
XForce ISS Database: libvirt-cve20131962-dos(84341)
https://exchange.xforce.ibmcloud.com/vulnerabilities/84341

Copyright Copyright (C) 2015 Eero Volotinen

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.121032
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 201309-18
Resumen:	Gentoo Linux Local Security Checks GLSA 201309-18
Descripción:	Summary: Gentoo Linux Local Security Checks GLSA 201309-18 Vulnerability Insight: An error in the virNetMessageFree() function in rpc/virnetserverclient.c can lead to a use-after-free. Additionally, a socket leak in the remoteDispatchStoragePoolListAllVolumes command can lead to file descriptor exhaustion. Solution: Update the affected packages to the latest available version. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-0170 BugTraq ID: 57578 http://www.securityfocus.com/bid/57578 http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098398.html http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098370.html http://lists.fedoraproject.org/pipermail/package-announce/2013-February/098326.html http://osvdb.org/89644 RedHat Security Advisories: RHSA-2013:0199 http://rhn.redhat.com/errata/RHSA-2013-0199.html http://www.securitytracker.com/id/1028047 http://secunia.com/advisories/52001 http://secunia.com/advisories/52003 SuSE Security Announcement: SUSE-SU-2013:0320 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00016.html SuSE Security Announcement: openSUSE-SU-2013:0274 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00001.html SuSE Security Announcement: openSUSE-SU-2013:0275 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00002.html http://www.ubuntu.com/usn/USN-1708-1 XForce ISS Database: libvirt-virnetmessagefree-code-exec(81552) https://exchange.xforce.ibmcloud.com/vulnerabilities/81552 Common Vulnerability Exposure (CVE) ID: CVE-2013-1962 BugTraq ID: 59937 http://www.securityfocus.com/bid/59937 http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106906.html http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106921.html https://www.redhat.com/archives/libvir-list/2013-May/msg01222.html http://www.openwall.com/lists/oss-security/2013/05/16/9 http://osvdb.org/93451 RedHat Security Advisories: RHSA-2013:0831 http://rhn.redhat.com/errata/RHSA-2013-0831.html http://www.securitytracker.com/id/1028577 http://secunia.com/advisories/53440 http://secunia.com/advisories/53475 SuSE Security Announcement: openSUSE-SU-2013:0885 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-06/msg00022.html http://www.ubuntu.com/usn/USN-1895-1 XForce ISS Database: libvirt-cve20131962-dos(84341) https://exchange.xforce.ibmcloud.com/vulnerabilities/84341
Copyright	Copyright (C) 2015 Eero Volotinen