Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200802-05 (gnumeric)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.60382

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200802-05 (gnumeric)

Resumen: The remote host is missing updates announced in;advisory GLSA 200802-05.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200802-05.

Vulnerability Insight:
Several integer overflow vulnerabilities have been reported in Gnumeric,
possibly resulting in user-assisted execution of arbitrary code.

Solution:
All Gnumeric users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=app-office/gnumeric-1.8.1'

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2008-0668
BugTraq ID: 27536
http://www.securityfocus.com/bid/27536
Debian Security Information: DSA-1546 (Google Search)
http://www.debian.org/security/2008/dsa-1546
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00114.html
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00227.html
http://security.gentoo.org/glsa/glsa-200802-05.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2008:056
http://secunia.com/advisories/28725/
http://secunia.com/advisories/28799
http://secunia.com/advisories/28948
http://secunia.com/advisories/29702
http://secunia.com/advisories/29896
http://secunia.com/advisories/31339
SuSE Security Announcement: SUSE-SR:2008:016 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00001.html
http://www.ubuntu.com/usn/usn-604-1
http://www.vupen.com/english/advisories/2008/0462

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.60382
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200802-05 (gnumeric)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200802-05.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200802-05. Vulnerability Insight: Several integer overflow vulnerabilities have been reported in Gnumeric, possibly resulting in user-assisted execution of arbitrary code. Solution: All Gnumeric users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-office/gnumeric-1.8.1' CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-0668 BugTraq ID: 27536 http://www.securityfocus.com/bid/27536 Debian Security Information: DSA-1546 (Google Search) http://www.debian.org/security/2008/dsa-1546 https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00114.html https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00227.html http://security.gentoo.org/glsa/glsa-200802-05.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:056 http://secunia.com/advisories/28725/ http://secunia.com/advisories/28799 http://secunia.com/advisories/28948 http://secunia.com/advisories/29702 http://secunia.com/advisories/29896 http://secunia.com/advisories/31339 SuSE Security Announcement: SUSE-SR:2008:016 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00001.html http://www.ubuntu.com/usn/usn-604-1 http://www.vupen.com/english/advisories/2008/0462
Copyright	Copyright (C) 2008 E-Soft Inc.