Gentoo Local Security Checks : Gentoo Security Advisory GLSA 201312-09

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.121090

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 201312-09

Resumen: Gentoo Linux Local Security Checks GLSA 201312-09

Descripción: Summary:
Gentoo Linux Local Security Checks GLSA 201312-09

Vulnerability Insight:
Multiple vulnerabilities have been discovered in cabextract. Please review the CVE identifiers referenced below for details.

Solution:
Update the affected packages to the latest available version.

CVSS Score:
5.1

CVSS Vector:
AV:N/AC:H/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-2800
ADV-2010-1903
http://www.vupen.com/english/advisories/2010/1903
[oss-security] 20100802 CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode
http://marc.info/?l=oss-security&m=128076168623266&w=2
[oss-security] 20100802 Re: CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode
http://marc.info/?l=oss-security&m=128077976522470&w=2
http://bugs.gentoo.org/show_bug.cgi?id=329891
http://libmspack.svn.sourceforge.net/viewvc/libmspack?view=revision&revision=90
http://libmspack.svn.sourceforge.net/viewvc/libmspack?view=revision&revision=95
http://www.cabextract.org.uk/#changes
https://bugzilla.redhat.com/show_bug.cgi?id=620450
Common Vulnerability Exposure (CVE) ID: CVE-2010-2801
42173
http://www.securityfocus.com/bid/42173
ADV-2010-1997
http://www.vupen.com/english/advisories/2010/1997
DSA-2087
http://www.debian.org/security/2010/dsa-2087
cabextract-archive-code-execution(60891)
https://exchange.xforce.ibmcloud.com/vulnerabilities/60891
http://libmspack.svn.sourceforge.net/viewvc/libmspack/libmspack/trunk/mspack/qtmd.c?r1=114&r2=113
http://libmspack.svn.sourceforge.net/viewvc/libmspack?view=revision&revision=118
https://bugzilla.redhat.com/show_bug.cgi?id=620454

Copyright Copyright (C) 2015 Eero Volotinen

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.121090
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 201312-09
Resumen:	Gentoo Linux Local Security Checks GLSA 201312-09
Descripción:	Summary: Gentoo Linux Local Security Checks GLSA 201312-09 Vulnerability Insight: Multiple vulnerabilities have been discovered in cabextract. Please review the CVE identifiers referenced below for details. Solution: Update the affected packages to the latest available version. CVSS Score: 5.1 CVSS Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-2800 ADV-2010-1903 http://www.vupen.com/english/advisories/2010/1903 [oss-security] 20100802 CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain .cab files in test archive mode http://marc.info/?l=oss-security&m=128076168623266&w=2 [oss-security] 20100802 Re: CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain .cab files in test archive mode http://marc.info/?l=oss-security&m=128077976522470&w=2 http://bugs.gentoo.org/show_bug.cgi?id=329891 http://libmspack.svn.sourceforge.net/viewvc/libmspack?view=revision&revision=90 http://libmspack.svn.sourceforge.net/viewvc/libmspack?view=revision&revision=95 http://www.cabextract.org.uk/#changes https://bugzilla.redhat.com/show_bug.cgi?id=620450 Common Vulnerability Exposure (CVE) ID: CVE-2010-2801 42173 http://www.securityfocus.com/bid/42173 ADV-2010-1997 http://www.vupen.com/english/advisories/2010/1997 DSA-2087 http://www.debian.org/security/2010/dsa-2087 cabextract-archive-code-execution(60891) https://exchange.xforce.ibmcloud.com/vulnerabilities/60891 http://libmspack.svn.sourceforge.net/viewvc/libmspack/libmspack/trunk/mspack/qtmd.c?r1=114&r2=113 http://libmspack.svn.sourceforge.net/viewvc/libmspack?view=revision&revision=118 https://bugzilla.redhat.com/show_bug.cgi?id=620454
Copyright	Copyright (C) 2015 Eero Volotinen