Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200609-08 (xine-lib)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.57886

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200609-08 (xine-lib)

Resumen: The remote host is missing updates announced in;advisory GLSA 200609-08.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200609-08.

Vulnerability Insight:
xine-lib is vulnerable to multiple buffer overflows that could be exploited
to execute arbitrary code.

Solution:
All xine-lib users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=media-libs/xine-lib-1.1.2-r2'

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2006-2802
BugTraq ID: 18187
http://www.securityfocus.com/bid/18187
Debian Security Information: DSA-1105 (Google Search)
http://www.debian.org/security/2006/dsa-1105
https://www.exploit-db.com/exploits/1852
http://security.gentoo.org/glsa/glsa-200609-08.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2006:108
http://www.osvdb.org/25936
http://secunia.com/advisories/20369
http://secunia.com/advisories/20549
http://secunia.com/advisories/20766
http://secunia.com/advisories/20828
http://secunia.com/advisories/20942
http://secunia.com/advisories/21919
SuSE Security Announcement: SUSE-SR:2006:014 (Google Search)
http://lists.suse.com/archive/suse-security-announce/2006-Jun/0008.html
https://usn.ubuntu.com/295-1/
XForce ISS Database: xinelib-xinepluginphttp-bo(26972)
https://exchange.xforce.ibmcloud.com/vulnerabilities/26972

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.57886
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200609-08 (xine-lib)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200609-08.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200609-08. Vulnerability Insight: xine-lib is vulnerable to multiple buffer overflows that could be exploited to execute arbitrary code. Solution: All xine-lib users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=media-libs/xine-lib-1.1.2-r2' CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-2802 BugTraq ID: 18187 http://www.securityfocus.com/bid/18187 Debian Security Information: DSA-1105 (Google Search) http://www.debian.org/security/2006/dsa-1105 https://www.exploit-db.com/exploits/1852 http://security.gentoo.org/glsa/glsa-200609-08.xml http://www.mandriva.com/security/advisories?name=MDKSA-2006:108 http://www.osvdb.org/25936 http://secunia.com/advisories/20369 http://secunia.com/advisories/20549 http://secunia.com/advisories/20766 http://secunia.com/advisories/20828 http://secunia.com/advisories/20942 http://secunia.com/advisories/21919 SuSE Security Announcement: SUSE-SR:2006:014 (Google Search) http://lists.suse.com/archive/suse-security-announce/2006-Jun/0008.html https://usn.ubuntu.com/295-1/ XForce ISS Database: xinelib-xinepluginphttp-bo(26972) https://exchange.xforce.ibmcloud.com/vulnerabilities/26972
Copyright	Copyright (C) 2008 E-Soft Inc.