Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200712-09 (ruby-gtk2)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.59971

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200712-09 (ruby-gtk2)

Resumen: The remote host is missing updates announced in;advisory GLSA 200712-09.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200712-09.

Vulnerability Insight:
A format string error has been discovered in Ruby-GNOME2, possibly leading
to the execution of arbitrary code.

Solution:
All Ruby-GNOME2 users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=dev-ruby/ruby-gtk2-0.16.0-r2'

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2007-6183
BugTraq ID: 26616
http://www.securityfocus.com/bid/26616
Bugtraq: 20071127 Ruby/Gnome2 0.16.0 Format String Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/484240/100/0/threaded
Debian Security Information: DSA-1431 (Google Search)
http://www.debian.org/security/2007/dsa-1431
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00214.html
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00251.html
http://security.gentoo.org/glsa/glsa-200712-09.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2008:033
http://em386.blogspot.com/2007/11/your-favorite-better-than-c-scripting.html
https://bugzilla.redhat.com/show_bug.cgi?id=402871
http://osvdb.org/40774
http://secunia.com/advisories/27825
http://secunia.com/advisories/27975
http://secunia.com/advisories/28022
http://secunia.com/advisories/28060
http://securityreason.com/securityalert/3407
http://www.vupen.com/english/advisories/2007/4022
XForce ISS Database: rubygnome2-mdiaginitialize-format-string(38757)
https://exchange.xforce.ibmcloud.com/vulnerabilities/38757

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.59971
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200712-09 (ruby-gtk2)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200712-09.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200712-09. Vulnerability Insight: A format string error has been discovered in Ruby-GNOME2, possibly leading to the execution of arbitrary code. Solution: All Ruby-GNOME2 users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=dev-ruby/ruby-gtk2-0.16.0-r2' CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-6183 BugTraq ID: 26616 http://www.securityfocus.com/bid/26616 Bugtraq: 20071127 Ruby/Gnome2 0.16.0 Format String Vulnerability (Google Search) http://www.securityfocus.com/archive/1/484240/100/0/threaded Debian Security Information: DSA-1431 (Google Search) http://www.debian.org/security/2007/dsa-1431 https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00214.html https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00251.html http://security.gentoo.org/glsa/glsa-200712-09.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:033 http://em386.blogspot.com/2007/11/your-favorite-better-than-c-scripting.html https://bugzilla.redhat.com/show_bug.cgi?id=402871 http://osvdb.org/40774 http://secunia.com/advisories/27825 http://secunia.com/advisories/27975 http://secunia.com/advisories/28022 http://secunia.com/advisories/28060 http://securityreason.com/securityalert/3407 http://www.vupen.com/english/advisories/2007/4022 XForce ISS Database: rubygnome2-mdiaginitialize-format-string(38757) https://exchange.xforce.ibmcloud.com/vulnerabilities/38757
Copyright	Copyright (C) 2008 E-Soft Inc.