ID de Prueba:	1.3.6.1.4.1.25623.1.0.58197
Categoría:	Slackware Local Security Checks
Título:	Slackware: Security Advisory (SSA:2007-093-03)
Resumen:	The remote host is missing an update for the 'qt' package(s) announced via the SSA:2007-093-03 advisory.
Descripción:	Summary: The remote host is missing an update for the 'qt' package(s) announced via the SSA:2007-093-03 advisory. Vulnerability Insight: New qt packages are available for Slackware 10.2, 11.0, and -current to fix a security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database: [link moved to references] Here are the details from the Slackware 11.0 ChangeLog: +--------------------------+ patches/packages/qt-3.3.8-i486-1_slack11.0.tgz: Patched an issue where the Qt UTF 8 decoder may in some instances fail to reject overlong sequences, possibly allowing '/../' path injection or XSS errors. For more information, see: [link moved to references] (* Security fix *) +--------------------------+ Affected Software/OS: 'qt' package(s) on Slackware 10.2, Slackware 11.0, Slackware current. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-0242 BugTraq ID: 23269 http://www.securityfocus.com/bid/23269 Debian Security Information: DSA-1292 (Google Search) http://www.debian.org/security/2007/dsa-1292 http://fedoranews.org/updates/FEDORA-2007-703.shtml http://www.mandriva.com/security/advisories?name=MDKSA-2007:074 http://www.mandriva.com/security/advisories?name=MDKSA-2007:075 http://www.mandriva.com/security/advisories?name=MDKSA-2007:076 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11510 http://www.redhat.com/support/errata/RHSA-2007-0883.html http://www.redhat.com/support/errata/RHSA-2007-0909.html RedHat Security Advisories: RHSA-2011:1324 http://rhn.redhat.com/errata/RHSA-2011-1324.html http://secunia.com/advisories/24699 http://secunia.com/advisories/24705 http://secunia.com/advisories/24726 http://secunia.com/advisories/24727 http://secunia.com/advisories/24759 http://secunia.com/advisories/24797 http://secunia.com/advisories/24847 http://secunia.com/advisories/24889 http://secunia.com/advisories/25263 http://secunia.com/advisories/26804 http://secunia.com/advisories/26857 http://secunia.com/advisories/27108 http://secunia.com/advisories/27275 http://secunia.com/advisories/46117 SGI Security Advisory: 20070901-01-P ftp://patches.sgi.com/support/free/security/advisories/20070901-01-P.asc http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.348591 SuSE Security Announcement: SUSE-SR:2007:006 (Google Search) http://www.novell.com/linux/security/advisories/2007_6_sr.html http://www.ubuntu.com/usn/usn-452-1 http://www.vupen.com/english/advisories/2007/1212 XForce ISS Database: qt-utf8-xss(33397) https://exchange.xforce.ibmcloud.com/vulnerabilities/33397
Copyright	Copyright (C) 2012 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.