Slackware Local Security Checks : Slackware: Security Advisory (SSA:2008-128-02)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.61456
Categoría:	Slackware Local Security Checks
Título:	Slackware: Security Advisory (SSA:2008-128-02)
Resumen:	The remote host is missing an update for the 'mozilla-thunderbird' package(s) announced via the SSA:2008-128-02 advisory.
Descripción:	Summary: The remote host is missing an update for the 'mozilla-thunderbird' package(s) announced via the SSA:2008-128-02 advisory. Vulnerability Insight: New mozilla-thunderbird packages are available for Slackware 10.2, 11.0, 12.0, 12.1, and -current to fix security issues, including crashes that can corrupt memory, as well as a JavaScript privilege escalation and arbitrary code execution flaw. More details about these issues may be found here: [links moved to references] Here are the details from the Slackware 12.1 ChangeLog: +--------------------------+ patches/packages/mozilla-thunderbird-2.0.0.14-i686-1.tgz: Upgraded to thunderbird-2.0.0.14. This upgrade fixes some more security bugs. For more information, see: [link moved to references] (* Security fix *) +--------------------------+ Affected Software/OS: 'mozilla-thunderbird' package(s) on Slackware 10.2, Slackware 11.0, Slackware 12.0, Slackware 12.1, Slackware current. Solution: Please install the updated package(s). CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-1233 BugTraq ID: 28448 http://www.securityfocus.com/bid/28448 Bugtraq: 20080327 rPSA-2008-0128-1 firefox (Google Search) http://www.securityfocus.com/archive/1/490196/100/0/threaded Cert/CC Advisory: TA08-087A http://www.us-cert.gov/cas/techalerts/TA08-087A.html CERT/CC vulnerability note: VU#466521 http://www.kb.cert.org/vuls/id/466521 Debian Security Information: DSA-1532 (Google Search) http://www.debian.org/security/2008/dsa-1532 Debian Security Information: DSA-1534 (Google Search) http://www.debian.org/security/2008/dsa-1534 Debian Security Information: DSA-1535 (Google Search) http://www.debian.org/security/2008/dsa-1535 Debian Security Information: DSA-1574 (Google Search) http://www.debian.org/security/2008/dsa-1574 https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00058.html https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00074.html http://www.gentoo.org/security/en/glsa/glsa-200805-18.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:080 http://www.mandriva.com/security/advisories?name=MDVSA-2008:155 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11078 http://www.redhat.com/support/errata/RHSA-2008-0207.html RedHat Security Advisories: RHSA-2008:0208 http://rhn.redhat.com/errata/RHSA-2008-0208.html http://www.redhat.com/support/errata/RHSA-2008-0209.html http://www.securitytracker.com/id?1019694 http://secunia.com/advisories/29391 http://secunia.com/advisories/29526 http://secunia.com/advisories/29539 http://secunia.com/advisories/29541 http://secunia.com/advisories/29547 http://secunia.com/advisories/29548 http://secunia.com/advisories/29550 http://secunia.com/advisories/29558 http://secunia.com/advisories/29560 http://secunia.com/advisories/29607 http://secunia.com/advisories/29616 http://secunia.com/advisories/29645 http://secunia.com/advisories/30016 http://secunia.com/advisories/30094 http://secunia.com/advisories/30105 http://secunia.com/advisories/30192 http://secunia.com/advisories/30327 http://secunia.com/advisories/30370 http://secunia.com/advisories/30620 http://secunia.com/advisories/31043 http://www.slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.447313 http://sunsolve.sun.com/search/document.do?assetkey=1-26-238492-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-239546-1 SuSE Security Announcement: SUSE-SA:2008:019 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00002.html http://www.ubuntu.com/usn/usn-592-1 http://www.ubuntu.com/usn/usn-605-1 http://www.vupen.com/english/advisories/2008/0998/references http://www.vupen.com/english/advisories/2008/0999/references http://www.vupen.com/english/advisories/2008/1793/references http://www.vupen.com/english/advisories/2008/2091/references XForce ISS Database: mozilla-settimeout-code-execution(41443) https://exchange.xforce.ibmcloud.com/vulnerabilities/41443 Common Vulnerability Exposure (CVE) ID: CVE-2008-1234 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9551 XForce ISS Database: firefox-eventhandlers-xss(41455) https://exchange.xforce.ibmcloud.com/vulnerabilities/41455 Common Vulnerability Exposure (CVE) ID: CVE-2008-1235 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10980 XForce ISS Database: mozilla-principal-code-execution(41457) https://exchange.xforce.ibmcloud.com/vulnerabilities/41457 Common Vulnerability Exposure (CVE) ID: CVE-2008-1236 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11788 http://www.securitytracker.com/id?1019695 XForce ISS Database: mozilla-layoutengine-code-execution(41445) https://exchange.xforce.ibmcloud.com/vulnerabilities/41445 Common Vulnerability Exposure (CVE) ID: CVE-2008-1237 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9651 SuSE Security Announcement: SUSE-SR:2008:011 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-05/msg00000.html XForce ISS Database: firefox-javascript-engine-code-execution(41446) https://exchange.xforce.ibmcloud.com/vulnerabilities/41446
Copyright	Copyright (C) 2012 Greenbone AG