Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200905-04 (gnutls)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.64043

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200905-04 (gnutls)

Resumen: The remote host is missing updates announced in;advisory GLSA 200905-04.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200905-04.

Vulnerability Insight:
Multiple vulnerabilities in GnuTLS might result in a Denial of Service,
spoofing or the generation of invalid keys.

Solution:
All GnuTLS users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-libs/gnutls-2.6.6'

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-1415
BugTraq ID: 34783
http://www.securityfocus.com/bid/34783
http://security.gentoo.org/glsa/glsa-200905-04.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2009:116
http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3502
http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3515
http://www.securitytracker.com/id?1022157
http://secunia.com/advisories/34842
http://secunia.com/advisories/35211
http://www.vupen.com/english/advisories/2009/1218
XForce ISS Database: gnutls-dsa-code-execution(50257)
https://exchange.xforce.ibmcloud.com/vulnerabilities/50257
XForce ISS Database: gnutls-dsa-dos(50260)
https://exchange.xforce.ibmcloud.com/vulnerabilities/50260
XForce ISS Database: gnutls-libgnutls-dos(50445)
https://exchange.xforce.ibmcloud.com/vulnerabilities/50445
Common Vulnerability Exposure (CVE) ID: CVE-2009-1416
http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3516
http://lists.gnu.org/archive/html/help-gnutls/2009-04/msg00018.html
http://www.securitytracker.com/id?1022158
Common Vulnerability Exposure (CVE) ID: CVE-2009-1417
http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3517
http://www.securitytracker.com/id?1022159
XForce ISS Database: gnutls-gnutlscli-spoofing(50261)
https://exchange.xforce.ibmcloud.com/vulnerabilities/50261

Copyright Copyright (C) 2009 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.64043
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200905-04 (gnutls)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200905-04.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200905-04. Vulnerability Insight: Multiple vulnerabilities in GnuTLS might result in a Denial of Service, spoofing or the generation of invalid keys. Solution: All GnuTLS users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-libs/gnutls-2.6.6' CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1415 BugTraq ID: 34783 http://www.securityfocus.com/bid/34783 http://security.gentoo.org/glsa/glsa-200905-04.xml http://www.mandriva.com/security/advisories?name=MDVSA-2009:116 http://permalink.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3502 http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3515 http://www.securitytracker.com/id?1022157 http://secunia.com/advisories/34842 http://secunia.com/advisories/35211 http://www.vupen.com/english/advisories/2009/1218 XForce ISS Database: gnutls-dsa-code-execution(50257) https://exchange.xforce.ibmcloud.com/vulnerabilities/50257 XForce ISS Database: gnutls-dsa-dos(50260) https://exchange.xforce.ibmcloud.com/vulnerabilities/50260 XForce ISS Database: gnutls-libgnutls-dos(50445) https://exchange.xforce.ibmcloud.com/vulnerabilities/50445 Common Vulnerability Exposure (CVE) ID: CVE-2009-1416 http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3516 http://lists.gnu.org/archive/html/help-gnutls/2009-04/msg00018.html http://www.securitytracker.com/id?1022158 Common Vulnerability Exposure (CVE) ID: CVE-2009-1417 http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3517 http://www.securitytracker.com/id?1022159 XForce ISS Database: gnutls-gnutlscli-spoofing(50261) https://exchange.xforce.ibmcloud.com/vulnerabilities/50261
Copyright	Copyright (C) 2009 E-Soft Inc.