Mandrake Local Security Checks : Mandrake Security Advisory MDKSA-2007:023 (libgtop2)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.57804

Categoría: Mandrake Local Security Checks

Título: Mandrake Security Advisory MDKSA-2007:023 (libgtop2)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing an update to libgtop2
announced via advisory MDKSA-2007:023.

Stack-based buffer overflow in the glibtop_get_proc_map_s function in
libgtop before 2.14.6 (libgtop2) allows local users to cause a denial
of service (crash) and possibly execute arbitrary code via a process
with a long filename that is mapped in its address space, which
triggers the overflow in gnome-system-monitor.

The updated packages have been patched to correct this problem.

Affected: 2007.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2007:023

Risk factor : Medium

CVSS Score:
3.7

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2007-0235
BugTraq ID: 22054
http://www.securityfocus.com/bid/22054
Debian Security Information: DSA-1255 (Google Search)
http://www.debian.org/security/2007/dsa-1255
http://security.gentoo.org/glsa/glsa-200701-17.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2007:023
https://launchpad.net/bugs/79206
http://osvdb.org/32815
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10720
http://www.redhat.com/support/errata/RHSA-2007-0765.html
http://www.securitytracker.com/id?1018526
http://secunia.com/advisories/23736
http://secunia.com/advisories/23777
http://secunia.com/advisories/23814
http://secunia.com/advisories/23840
http://secunia.com/advisories/23872
http://secunia.com/advisories/24015
http://secunia.com/advisories/26367
http://www.ubuntu.com/usn/usn-407-1
http://www.vupen.com/english/advisories/2007/0185
http://www.vupen.com/english/advisories/2007/0187
XForce ISS Database: libgtop2-glibtopbo(31522)
https://exchange.xforce.ibmcloud.com/vulnerabilities/31522

Copyright Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.57804
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2007:023 (libgtop2)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to libgtop2 announced via advisory MDKSA-2007:023. Stack-based buffer overflow in the glibtop_get_proc_map_s function in libgtop before 2.14.6 (libgtop2) allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a process with a long filename that is mapped in its address space, which triggers the overflow in gnome-system-monitor. The updated packages have been patched to correct this problem. Affected: 2007.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2007:023 Risk factor : Medium CVSS Score: 3.7
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-0235 BugTraq ID: 22054 http://www.securityfocus.com/bid/22054 Debian Security Information: DSA-1255 (Google Search) http://www.debian.org/security/2007/dsa-1255 http://security.gentoo.org/glsa/glsa-200701-17.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:023 https://launchpad.net/bugs/79206 http://osvdb.org/32815 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10720 http://www.redhat.com/support/errata/RHSA-2007-0765.html http://www.securitytracker.com/id?1018526 http://secunia.com/advisories/23736 http://secunia.com/advisories/23777 http://secunia.com/advisories/23814 http://secunia.com/advisories/23840 http://secunia.com/advisories/23872 http://secunia.com/advisories/24015 http://secunia.com/advisories/26367 http://www.ubuntu.com/usn/usn-407-1 http://www.vupen.com/english/advisories/2007/0185 http://www.vupen.com/english/advisories/2007/0187 XForce ISS Database: libgtop2-glibtopbo(31522) https://exchange.xforce.ibmcloud.com/vulnerabilities/31522
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com