Slackware Local Security Checks : Slackware: Security Advisory (SSA:2010-116-01)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.67344

Categoría: Slackware Local Security Checks

Título: Slackware: Security Advisory (SSA:2010-116-01)

Resumen: The remote host is missing an update for the 'irssi' package(s) announced via the SSA:2010-116-01 advisory.

Descripción: Summary:
The remote host is missing an update for the 'irssi' package(s) announced via the SSA:2010-116-01 advisory.

Vulnerability Insight:
New irssi packages are available for Slackware 10.1, 10.2, 11.0, 12.0, 12.1,
12.2, 13.0, and -current to fix security issues.

Here are the details from the Slackware 13.0 ChangeLog:
+--------------------------+
patches/packages/irssi-0.8.15-i486-1_slack13.0.txz: Upgraded.
From the NEWS file:
- Check if an SSL certificate matches the hostname of the server we are
connecting to.
- Fix crash when checking for fuzzy nick match when not on the channel.
Reported by Aurelien Delaitre (SATE 2009).
For more information, see:
[links moved to references]
(* Security fix *)
+--------------------------+

Affected Software/OS:
'irssi' package(s) on Slackware 10.1, Slackware 10.2, Slackware 11.0, Slackware 12.0, Slackware 12.1, Slackware 12.2, Slackware 13.0, Slackware current.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-1155
39365
http://secunia.com/advisories/39365
39620
http://secunia.com/advisories/39620
39797
http://secunia.com/advisories/39797
ADV-2010-0856
http://www.vupen.com/english/advisories/2010/0856
ADV-2010-0987
http://www.vupen.com/english/advisories/2010/0987
ADV-2010-1107
http://www.vupen.com/english/advisories/2010/1107
ADV-2010-1110
http://www.vupen.com/english/advisories/2010/1110
FEDORA-2010-6629
http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041054.html
SSA:2010-116-01
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.497301
SUSE-SR:2010:011
http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html
USN-929-1
http://www.ubuntu.com/usn/USN-929-1
[oss-security] 20100411 CVE request: irssi 0.8.15
http://marc.info/?l=oss-security&m=127098845125270&w=2
[oss-security] 20100412 Re: CVE request: irssi 0.8.15
http://marc.info/?l=oss-security&m=127110132019166&w=2
[oss-security] 20100413 Re: CVE request: irssi 0.8.15
http://marc.info/?l=oss-security&m=127116251220784&w=2
http://marc.info/?l=oss-security&m=127119240204394&w=2
http://github.com/ensc/irssi-proxy/commit/85bbc05b21678e80423815d2ef1dfe26208491ab
http://irssi.org/news
http://irssi.org/news/ChangeLog
irssi-hostname-mitm(57790)
https://exchange.xforce.ibmcloud.com/vulnerabilities/57790
Common Vulnerability Exposure (CVE) ID: CVE-2010-1156
1023845
http://securitytracker.com/id?1023845
http://marc.info/?l=oss-security&m=127111071631857&w=2
http://marc.info/?l=oss-security&m=127115784314970&w=2
http://svn.irssi.org/cgi-bin/viewvc.cgi/irssi/trunk/src/core/nicklist.c?root=irssi&r1=4922&r2=5126
irssi-unspecified-dos(57791)
https://exchange.xforce.ibmcloud.com/vulnerabilities/57791

Copyright Copyright (C) 2012 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.67344
Categoría:	Slackware Local Security Checks
Título:	Slackware: Security Advisory (SSA:2010-116-01)
Resumen:	The remote host is missing an update for the 'irssi' package(s) announced via the SSA:2010-116-01 advisory.
Descripción:	Summary: The remote host is missing an update for the 'irssi' package(s) announced via the SSA:2010-116-01 advisory. Vulnerability Insight: New irssi packages are available for Slackware 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, and -current to fix security issues. Here are the details from the Slackware 13.0 ChangeLog: +--------------------------+ patches/packages/irssi-0.8.15-i486-1_slack13.0.txz: Upgraded. From the NEWS file: - Check if an SSL certificate matches the hostname of the server we are connecting to. - Fix crash when checking for fuzzy nick match when not on the channel. Reported by Aurelien Delaitre (SATE 2009). For more information, see: [links moved to references] (* Security fix *) +--------------------------+ Affected Software/OS: 'irssi' package(s) on Slackware 10.1, Slackware 10.2, Slackware 11.0, Slackware 12.0, Slackware 12.1, Slackware 12.2, Slackware 13.0, Slackware current. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-1155 39365 http://secunia.com/advisories/39365 39620 http://secunia.com/advisories/39620 39797 http://secunia.com/advisories/39797 ADV-2010-0856 http://www.vupen.com/english/advisories/2010/0856 ADV-2010-0987 http://www.vupen.com/english/advisories/2010/0987 ADV-2010-1107 http://www.vupen.com/english/advisories/2010/1107 ADV-2010-1110 http://www.vupen.com/english/advisories/2010/1110 FEDORA-2010-6629 http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041054.html SSA:2010-116-01 http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.497301 SUSE-SR:2010:011 http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html USN-929-1 http://www.ubuntu.com/usn/USN-929-1 [oss-security] 20100411 CVE request: irssi 0.8.15 http://marc.info/?l=oss-security&m=127098845125270&w=2 [oss-security] 20100412 Re: CVE request: irssi 0.8.15 http://marc.info/?l=oss-security&m=127110132019166&w=2 [oss-security] 20100413 Re: CVE request: irssi 0.8.15 http://marc.info/?l=oss-security&m=127116251220784&w=2 http://marc.info/?l=oss-security&m=127119240204394&w=2 http://github.com/ensc/irssi-proxy/commit/85bbc05b21678e80423815d2ef1dfe26208491ab http://irssi.org/news http://irssi.org/news/ChangeLog irssi-hostname-mitm(57790) https://exchange.xforce.ibmcloud.com/vulnerabilities/57790 Common Vulnerability Exposure (CVE) ID: CVE-2010-1156 1023845 http://securitytracker.com/id?1023845 http://marc.info/?l=oss-security&m=127111071631857&w=2 http://marc.info/?l=oss-security&m=127115784314970&w=2 http://svn.irssi.org/cgi-bin/viewvc.cgi/irssi/trunk/src/core/nicklist.c?root=irssi&r1=4922&r2=5126 irssi-unspecified-dos(57791) https://exchange.xforce.ibmcloud.com/vulnerabilities/57791
Copyright	Copyright (C) 2012 Greenbone AG