Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200601-14 (LibAST)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.56226

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200601-14 (LibAST)

Resumen: The remote host is missing updates announced in;advisory GLSA 200601-14.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200601-14.

Vulnerability Insight:
A buffer overflow in LibAST may result in execution of arbitrary code with
escalated privileges.

Solution:
All users should upgrade to the latest version and run revdep-rebuild:

# emerge --sync
# emerge --ask --oneshot --verbose '>=x11-libs/libast-0.7'
# revdep-rebuild

CVSS Score:
4.6

CVSS Vector:
AV:L/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2006-0224
BugTraq ID: 16350
http://www.securityfocus.com/bid/16350
Bugtraq: 20060123 LibAST 0.7 Release Fixes Security Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/423366/100/0/threaded
Bugtraq: 20060123 [ Rosiello Security ] Eterm-LibAST Advisory (Google Search)
http://www.securityfocus.com/archive/1/423207/100/0/threaded
Bugtraq: 20060125 Rosiello Security - Eterm-LibAST Advisory (Google Search)
http://www.securityfocus.com/archive/1/423088/100/0/threaded
Debian Security Information: DSA-976 (Google Search)
http://www.debian.org/security/2006/dsa-976
http://www.gentoo.org/security/en/glsa/glsa-200601-14.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2006:029
http://www.rosiello.org/en/read_bugs.php?id=25
http://www.osvdb.org/22735
http://secunia.com/advisories/18586
http://secunia.com/advisories/18632
http://secunia.com/advisories/18916
http://securityreason.com/securityalert/373
http://www.vupen.com/english/advisories/2006/0314
XForce ISS Database: eterm-libast-filename-bo(24303)
https://exchange.xforce.ibmcloud.com/vulnerabilities/24303

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.56226
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200601-14 (LibAST)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200601-14.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200601-14. Vulnerability Insight: A buffer overflow in LibAST may result in execution of arbitrary code with escalated privileges. Solution: All users should upgrade to the latest version and run revdep-rebuild: # emerge --sync # emerge --ask --oneshot --verbose '>=x11-libs/libast-0.7' # revdep-rebuild CVSS Score: 4.6 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-0224 BugTraq ID: 16350 http://www.securityfocus.com/bid/16350 Bugtraq: 20060123 LibAST 0.7 Release Fixes Security Vulnerability (Google Search) http://www.securityfocus.com/archive/1/423366/100/0/threaded Bugtraq: 20060123 [ Rosiello Security ] Eterm-LibAST Advisory (Google Search) http://www.securityfocus.com/archive/1/423207/100/0/threaded Bugtraq: 20060125 Rosiello Security - Eterm-LibAST Advisory (Google Search) http://www.securityfocus.com/archive/1/423088/100/0/threaded Debian Security Information: DSA-976 (Google Search) http://www.debian.org/security/2006/dsa-976 http://www.gentoo.org/security/en/glsa/glsa-200601-14.xml http://www.mandriva.com/security/advisories?name=MDKSA-2006:029 http://www.rosiello.org/en/read_bugs.php?id=25 http://www.osvdb.org/22735 http://secunia.com/advisories/18586 http://secunia.com/advisories/18632 http://secunia.com/advisories/18916 http://securityreason.com/securityalert/373 http://www.vupen.com/english/advisories/2006/0314 XForce ISS Database: eterm-libast-filename-bo(24303) https://exchange.xforce.ibmcloud.com/vulnerabilities/24303
Copyright	Copyright (C) 2008 E-Soft Inc.