Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200510-08 (xine-lib)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.55574

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200510-08 (xine-lib)

Resumen: The remote host is missing updates announced in;advisory GLSA 200510-08.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200510-08.

Vulnerability Insight:
xine-lib contains a format string error in CDDB response handling that may
be exploited to execute arbitrary code.

Solution:
All xine-lib users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose media-libs/xine-lib

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2005-2967
BugTraq ID: 15044
http://www.securityfocus.com/bid/15044
Debian Security Information: DSA-863 (Google Search)
http://www.debian.org/security/2005/dsa-863
http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0196.html
http://www.gentoo.org/security/en/glsa/glsa-200510-08.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2005:180
http://www.osvdb.org/19892
http://secunia.com/advisories/17097
http://secunia.com/advisories/17099/
http://secunia.com/advisories/17111
http://secunia.com/advisories/17132
http://secunia.com/advisories/17162
http://secunia.com/advisories/17179
http://secunia.com/advisories/17282
http://slackware.com/security/viewer.php?l=slackware-security&y=2005&m=slackware-security.415454
SuSE Security Announcement: SUSE-SR:2005:024 (Google Search)
http://www.novell.com/linux/security/advisories/2005_24_sr.html
http://www.ubuntu.com/usn/usn-196-1
XForce ISS Database: xinelib-inputcdda-format-string(22545)
https://exchange.xforce.ibmcloud.com/vulnerabilities/22545

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.55574
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200510-08 (xine-lib)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200510-08.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200510-08. Vulnerability Insight: xine-lib contains a format string error in CDDB response handling that may be exploited to execute arbitrary code. Solution: All xine-lib users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose media-libs/xine-lib CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-2967 BugTraq ID: 15044 http://www.securityfocus.com/bid/15044 Debian Security Information: DSA-863 (Google Search) http://www.debian.org/security/2005/dsa-863 http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0196.html http://www.gentoo.org/security/en/glsa/glsa-200510-08.xml http://www.mandriva.com/security/advisories?name=MDKSA-2005:180 http://www.osvdb.org/19892 http://secunia.com/advisories/17097 http://secunia.com/advisories/17099/ http://secunia.com/advisories/17111 http://secunia.com/advisories/17132 http://secunia.com/advisories/17162 http://secunia.com/advisories/17179 http://secunia.com/advisories/17282 http://slackware.com/security/viewer.php?l=slackware-security&y=2005&m=slackware-security.415454 SuSE Security Announcement: SUSE-SR:2005:024 (Google Search) http://www.novell.com/linux/security/advisories/2005_24_sr.html http://www.ubuntu.com/usn/usn-196-1 XForce ISS Database: xinelib-inputcdda-format-string(22545) https://exchange.xforce.ibmcloud.com/vulnerabilities/22545
Copyright	Copyright (C) 2008 E-Soft Inc.