ID de Prueba:	1.3.6.1.4.1.25623.1.0.53900
Categoría:	Slackware Local Security Checks
Título:	Slackware: Security Advisory (SSA:2003-141-03)
Resumen:	The remote host is missing an update for the 'glibc' package(s) announced via the SSA:2003-141-03 advisory.
Descripción:	Summary: The remote host is missing an update for the 'glibc' package(s) announced via the SSA:2003-141-03 advisory. Vulnerability Insight: An integer overflow in the xdrmem_getbytes() function found in the glibc library has been fixed. This could allow a remote attacker to execute arbitrary code by exploiting RPC service that use xdrmem_getbytes(). None of the default RPC services provided by Slackware appear to use this function, but third-party applications may make use of it. We recommend upgrading to these new glibc packages. Here are the details from the Slackware 9.0 ChangeLog: +--------------------------+ Tue May 20 20:13:09 PDT 2003 patches/packages/glibc-2.3.1-i386-4.tgz: Patched, recompiled. (* Security fix *) patches/packages/glibc-debug-2.3.1-i386-4.tgz: Patched, recompiled. (* Security fix *) patches/packages/glibc-i18n-2.3.1-noarch-4.tgz: Rebuilt. patches/packages/glibc-profile-2.3.1-i386-4.tgz: Patched, recompiled. (* Security fix *) patches/packages/glibc-solibs-2.3.1-i386-4.tgz: Patched a buffer overflow in some dead code (xdrmem_getbytes(), which we couldn't find used by anything, but it doesn't hurt to patch it anyway) (* Security fix *) patches/packages/glibc-zoneinfo-2.3.1-noarch-4.tgz: Rebuilt. +--------------------------+ Affected Software/OS: 'glibc' package(s) on Slackware 8.1, Slackware 9.0. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Copyright	Copyright (C) 2012 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.