ID de Prueba:	1.3.6.1.4.1.25623.1.0.63252
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDVSA-2009:020 (xine-lib)
Resumen:	The remote host is missing an update to xine-lib;announced via advisory MDVSA-2009:020.
Descripción:	Summary: The remote host is missing an update to xine-lib announced via advisory MDVSA-2009:020. Vulnerability Insight: For details, please visit the referenced security advisories. This update provides the fix for all these security issues found in xine-lib 1.1.11 of Mandriva 2008.1. The vulnerabilities: CVE-2008-5234, CVE-2008-5236, CVE-2008-5237, CVE-2008-5239, CVE-2008-5240, CVE-2008-5243 are found in xine-lib 1.1.15 of Mandriva 2009.0 and are also fixed by this update. Affected: 2008.1, 2009.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-3231 BugTraq ID: 30699 http://www.securityfocus.com/bid/30699 https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00385.html https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00174.html http://www.mandriva.com/security/advisories?name=MDVSA-2009:020 http://www.openwall.com/lists/oss-security/2008/07/13/3 http://www.securitytracker.com/id?1020703 http://secunia.com/advisories/31827 SuSE Security Announcement: SUSE-SR:2009:004 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html http://www.vupen.com/english/advisories/2008/2382 XForce ISS Database: xine-ogg-dos(44040) https://exchange.xforce.ibmcloud.com/vulnerabilities/44040 Common Vulnerability Exposure (CVE) ID: CVE-2008-5233 BugTraq ID: 30797 http://www.securityfocus.com/bid/30797 Bugtraq: 20080822 [oCERT-2008-008] multiple heap overflows in xine-lib (Google Search) http://www.securityfocus.com/archive/1/495674/100/0/threaded http://www.ocert.org/analysis/2008-008/analysis.txt http://www.osvdb.org/47747 http://securitytracker.com/id?1020703 http://securityreason.com/securityalert/4648 XForce ISS Database: xinelib-mymngprocessheader-bo(44648) https://exchange.xforce.ibmcloud.com/vulnerabilities/44648 XForce ISS Database: xinelib-openmodfile-bo(44649) https://exchange.xforce.ibmcloud.com/vulnerabilities/44649 XForce ISS Database: xinelib-realparseaudiospecificdata-bo(44639) https://exchange.xforce.ibmcloud.com/vulnerabilities/44639 Common Vulnerability Exposure (CVE) ID: CVE-2008-5234 https://www.redhat.com/archives/fedora-package-announce/2009-January/msg00555.html http://secunia.com/advisories/31502 http://secunia.com/advisories/33544 XForce ISS Database: xinelib-id3v23interpframe-bo(44647) https://exchange.xforce.ibmcloud.com/vulnerabilities/44647 XForce ISS Database: xinelib-parsemoovatom-bo(44633) https://exchange.xforce.ibmcloud.com/vulnerabilities/44633 Common Vulnerability Exposure (CVE) ID: CVE-2008-5236 http://sourceforge.net/project/shownotes.php?release_id=619869 http://www.osvdb.org/47744 http://secunia.com/advisories/31567 http://www.vupen.com/english/advisories/2008/2427 XForce ISS Database: xinelib-openrafile-bo(44642) https://exchange.xforce.ibmcloud.com/vulnerabilities/44642 XForce ISS Database: xinelib-parseblockgroup-bo(44634) https://exchange.xforce.ibmcloud.com/vulnerabilities/44634 Common Vulnerability Exposure (CVE) ID: CVE-2008-5237 XForce ISS Database: xinelib-parsereferenceatom-dos(44652) https://exchange.xforce.ibmcloud.com/vulnerabilities/44652 Common Vulnerability Exposure (CVE) ID: CVE-2008-5239 XForce ISS Database: xinelib-multiple-inputplugin-bo(44651) https://exchange.xforce.ibmcloud.com/vulnerabilities/44651 Common Vulnerability Exposure (CVE) ID: CVE-2008-5240 http://www.osvdb.org/47742 XForce ISS Database: xinelib-demuxmatroska-dos(44653) https://exchange.xforce.ibmcloud.com/vulnerabilities/44653 Common Vulnerability Exposure (CVE) ID: CVE-2008-5241 XForce ISS Database: xinelib-demuxqtc-cmovatom-dos(44656) https://exchange.xforce.ibmcloud.com/vulnerabilities/44656 Common Vulnerability Exposure (CVE) ID: CVE-2008-5243 XForce ISS Database: xinelib-realparseheader-dos(44658) https://exchange.xforce.ibmcloud.com/vulnerabilities/44658 Common Vulnerability Exposure (CVE) ID: CVE-2008-5245 BugTraq ID: 30698 http://www.securityfocus.com/bid/30698 XForce ISS Database: xinelib-openvideocapturedevice-bo(44470) https://exchange.xforce.ibmcloud.com/vulnerabilities/44470 Common Vulnerability Exposure (CVE) ID: CVE-2008-5246 http://osvdb.org/47677 XForce ISS Database: xinelib-srcdemuxersid3-bo(44468) https://exchange.xforce.ibmcloud.com/vulnerabilities/44468
Copyright	Copyright (C) 2009 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.