ID de Prueba:	1.3.6.1.4.1.25623.1.0.60817
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200804-17 (speex)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200804-17.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200804-17. Vulnerability Insight: Improper input validation in Speex might lead to array indexing vulnerabilities in multiple player applications. Solution: All Speex users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=media-libs/speex-1.2_beta3_p2' CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-1686 BugTraq ID: 28665 http://www.securityfocus.com/bid/28665 Bugtraq: 20080417 [oCERT-2008-004] multiple speex implementations insufficientboundary checks (Google Search) http://www.securityfocus.com/archive/1/491009/100/0/threaded Debian Security Information: DSA-1584 (Google Search) http://www.debian.org/security/2008/dsa-1584 Debian Security Information: DSA-1585 (Google Search) http://www.debian.org/security/2008/dsa-1585 Debian Security Information: DSA-1586 (Google Search) http://www.debian.org/security/2008/dsa-1586 https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00244.html https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00287.html https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00357.html http://security.gentoo.org/glsa/glsa-200804-17.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:092 http://www.mandriva.com/security/advisories?name=MDVSA-2008:093 http://www.mandriva.com/security/advisories?name=MDVSA-2008:094 http://www.mandriva.com/security/advisories?name=MDVSA-2008:124 http://www.ocert.org/advisories/ocert-2008-004.html http://www.ocert.org/advisories/ocert-2008-2.html http://lists.xiph.org/pipermail/speex-dev/2008-April/006636.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10026 http://www.redhat.com/support/errata/RHSA-2008-0235.html http://www.securitytracker.com/id?1019875 http://secunia.com/advisories/29672 http://secunia.com/advisories/29727 http://secunia.com/advisories/29835 http://secunia.com/advisories/29845 http://secunia.com/advisories/29854 http://secunia.com/advisories/29866 http://secunia.com/advisories/29878 http://secunia.com/advisories/29880 http://secunia.com/advisories/29881 http://secunia.com/advisories/29882 http://secunia.com/advisories/29898 http://secunia.com/advisories/30104 http://secunia.com/advisories/30117 http://secunia.com/advisories/30119 http://secunia.com/advisories/30337 http://secunia.com/advisories/30353 http://secunia.com/advisories/30358 http://secunia.com/advisories/30581 http://secunia.com/advisories/30717 http://secunia.com/advisories/31393 http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.460836 SuSE Security Announcement: SUSE-SR:2008:012 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00001.html SuSE Security Announcement: SUSE-SR:2008:013 (Google Search) http://www.novell.com/linux/security/advisories/2008_13_sr.html http://www.ubuntu.com/usn/usn-611-1 http://www.ubuntu.com/usn/usn-611-2 http://www.ubuntu.com/usn/usn-611-3 http://www.ubuntu.com/usn/usn-635-1 http://www.vupen.com/english/advisories/2008/1187/references http://www.vupen.com/english/advisories/2008/1228/references http://www.vupen.com/english/advisories/2008/1268/references http://www.vupen.com/english/advisories/2008/1269/references http://www.vupen.com/english/advisories/2008/1300/references http://www.vupen.com/english/advisories/2008/1301/references http://www.vupen.com/english/advisories/2008/1302/references XForce ISS Database: fishsound-libfishsound-speex-bo(41684) https://exchange.xforce.ibmcloud.com/vulnerabilities/41684
Copyright	Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.