ID de Prueba:	1.3.6.1.4.1.25623.1.0.57450
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2006:0713
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2006:0713. Python is an interpreted, interactive, object-oriented programming language. A flaw was discovered in the way that the Python repr() function handled UTF-32/UCS-4 strings. If an application written in Python used the repr() function on untrusted data, this could lead to a denial of service or possibly allow the execution of arbitrary code with the privileges of the Python application. (CVE-2006-4980) In addition, this errata fixes a regression in the SimpleXMLRPCServer backport for Red Hat Enterprise Linux 3 that was introduced with RHSA-2005:109. Users of Python should upgrade to these updated packages, which contain a backported patch to correct this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2006-0713.html http://www.redhat.com/security/updates/classification/#important Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-4980 BugTraq ID: 20376 http://www.securityfocus.com/bid/20376 Bugtraq: 20061011 rPSA-2006-0187-1 idle python (Google Search) http://www.securityfocus.com/archive/1/448244/100/100/threaded Bugtraq: 20070110 VMware ESX server security updates (Google Search) http://www.securityfocus.com/archive/1/456546/100/200/threaded Debian Security Information: DSA-1197 (Google Search) http://www.debian.org/security/2006/dsa-1197 Debian Security Information: DSA-1198 (Google Search) http://www.debian.org/security/2006/dsa-1198 http://security.gentoo.org/glsa/glsa-200610-07.xml http://www.mandriva.com/security/advisories?name=MDKSA-2006:181 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10789 http://www.redhat.com/support/errata/RHSA-2006-0713.html http://www.redhat.com/support/errata/RHSA-2008-0629.html http://securitytracker.com/id?1017019 http://secunia.com/advisories/22276 http://secunia.com/advisories/22297 http://secunia.com/advisories/22303 http://secunia.com/advisories/22357 http://secunia.com/advisories/22358 http://secunia.com/advisories/22379 http://secunia.com/advisories/22448 http://secunia.com/advisories/22487 http://secunia.com/advisories/22512 http://secunia.com/advisories/22531 http://secunia.com/advisories/22639 http://secunia.com/advisories/23680 http://secunia.com/advisories/31492 SGI Security Advisory: 20061001-01-P ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc SuSE Security Announcement: SUSE-SR:2006:025 (Google Search) http://www.novell.com/linux/security/advisories/2006_25_sr.html http://www.ubuntu.com/usn/usn-359-1 http://www.vupen.com/english/advisories/2006/3940 http://www.vupen.com/english/advisories/2006/5131 XForce ISS Database: python-repr-bo(29408) https://exchange.xforce.ibmcloud.com/vulnerabilities/29408
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.