Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200904-11 (tor)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.63805

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200904-11 (tor)

Resumen: The remote host is missing updates announced in;advisory GLSA 200904-11.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200904-11.

Vulnerability Insight:
Multiple vulnerabilities in Tor might allow for heap corruption, Denial of
Service, escalation of privileges and information disclosure.

Solution:
All Tor users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-misc/tor-0.2.0.34'

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2008-5397
BugTraq ID: 32648
http://www.securityfocus.com/bid/32648
http://security.gentoo.org/glsa/glsa-200904-11.xml
http://secunia.com/advisories/33025
http://secunia.com/advisories/34583
http://www.vupen.com/english/advisories/2008/3366
XForce ISS Database: tor-user-privilege-escalation(47101)
https://exchange.xforce.ibmcloud.com/vulnerabilities/47101
Common Vulnerability Exposure (CVE) ID: CVE-2008-5398
XForce ISS Database: tor-clientdnsreject-security-bypass(47102)
https://exchange.xforce.ibmcloud.com/vulnerabilities/47102
Common Vulnerability Exposure (CVE) ID: CVE-2009-0414
BugTraq ID: 33399
http://www.securityfocus.com/bid/33399
https://www.redhat.com/archives/fedora-package-announce/2009-January/msg00902.html
http://archives.seul.org/or/announce/Jan-2009/msg00000.html
http://www.securitytracker.com/id?1021633
http://secunia.com/advisories/33635
http://secunia.com/advisories/33677
http://www.vupen.com/english/advisories/2009/0210
Common Vulnerability Exposure (CVE) ID: CVE-2009-0936
BugTraq ID: 33713
http://www.securityfocus.com/bid/33713
http://archives.seul.org/or/announce/Feb-2009/msg00000.html
http://secunia.com/advisories/33880
Common Vulnerability Exposure (CVE) ID: CVE-2009-0937
Common Vulnerability Exposure (CVE) ID: CVE-2009-0938
XForce ISS Database: tor-mirrors-dos(49323)
https://exchange.xforce.ibmcloud.com/vulnerabilities/49323
Common Vulnerability Exposure (CVE) ID: CVE-2009-0939

Copyright Copyright (C) 2009 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.63805
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200904-11 (tor)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200904-11.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200904-11. Vulnerability Insight: Multiple vulnerabilities in Tor might allow for heap corruption, Denial of Service, escalation of privileges and information disclosure. Solution: All Tor users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-misc/tor-0.2.0.34' CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-5397 BugTraq ID: 32648 http://www.securityfocus.com/bid/32648 http://security.gentoo.org/glsa/glsa-200904-11.xml http://secunia.com/advisories/33025 http://secunia.com/advisories/34583 http://www.vupen.com/english/advisories/2008/3366 XForce ISS Database: tor-user-privilege-escalation(47101) https://exchange.xforce.ibmcloud.com/vulnerabilities/47101 Common Vulnerability Exposure (CVE) ID: CVE-2008-5398 XForce ISS Database: tor-clientdnsreject-security-bypass(47102) https://exchange.xforce.ibmcloud.com/vulnerabilities/47102 Common Vulnerability Exposure (CVE) ID: CVE-2009-0414 BugTraq ID: 33399 http://www.securityfocus.com/bid/33399 https://www.redhat.com/archives/fedora-package-announce/2009-January/msg00902.html http://archives.seul.org/or/announce/Jan-2009/msg00000.html http://www.securitytracker.com/id?1021633 http://secunia.com/advisories/33635 http://secunia.com/advisories/33677 http://www.vupen.com/english/advisories/2009/0210 Common Vulnerability Exposure (CVE) ID: CVE-2009-0936 BugTraq ID: 33713 http://www.securityfocus.com/bid/33713 http://archives.seul.org/or/announce/Feb-2009/msg00000.html http://secunia.com/advisories/33880 Common Vulnerability Exposure (CVE) ID: CVE-2009-0937 Common Vulnerability Exposure (CVE) ID: CVE-2009-0938 XForce ISS Database: tor-mirrors-dos(49323) https://exchange.xforce.ibmcloud.com/vulnerabilities/49323 Common Vulnerability Exposure (CVE) ID: CVE-2009-0939
Copyright	Copyright (C) 2009 E-Soft Inc.