Gentoo Local Security Checks : Gentoo Security Advisory GLSA 201006-20 (asterisk)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.69023

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 201006-20 (asterisk)

Resumen: The remote host is missing updates announced in;advisory GLSA 201006-20.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 201006-20.

Vulnerability Insight:
Multiple vulnerabilities in Asterisk might allow remote attackers to cause
a Denial of Service condition, or conduct other attacks.

Solution:
All Asterisk users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-misc/asterisk-1.2.37'

CVSS Score:
7.8

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-2726
BugTraq ID: 36015
http://www.securityfocus.com/bid/36015
Bugtraq: 20090811 AST-2009-005: Remote Crash Vulnerability in SIP channel driver (Google Search)
http://www.securityfocus.com/archive/1/505669/100/0/threaded
http://labs.mudynamics.com/advisories/MU-200908-01.txt
http://www.securitytracker.com/id?1022705
http://secunia.com/advisories/36227
http://www.vupen.com/english/advisories/2009/2229
Common Vulnerability Exposure (CVE) ID: CVE-2009-2346
BugTraq ID: 36275
http://www.securityfocus.com/bid/36275
Bugtraq: 20090903 AST-2009-006: IAX2 Call Number Resource Exhaustion (Google Search)
http://www.securityfocus.com/archive/1/506257/100/0/threaded
http://securitytracker.com/id?1022819
http://secunia.com/advisories/36593
Common Vulnerability Exposure (CVE) ID: CVE-2009-4055
BugTraq ID: 37153
http://www.securityfocus.com/bid/37153
Bugtraq: 20091130 AST-2009-010: RTP Remote Crash Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/508147/100/0/threaded
Debian Security Information: DSA-1952 (Google Search)
http://www.debian.org/security/2009/dsa-1952
http://www.redhat.com/archives/fedora-package-announce/2009-December/msg00759.html
http://www.osvdb.org/60569
http://securitytracker.com/id?1023249
http://secunia.com/advisories/37530
http://secunia.com/advisories/37677
http://secunia.com/advisories/37708
http://www.vupen.com/english/advisories/2009/3368
XForce ISS Database: asterisk-rtp-comfortnoise-dos(54471)
https://exchange.xforce.ibmcloud.com/vulnerabilities/54471
Common Vulnerability Exposure (CVE) ID: CVE-2009-3727
1023133
http://www.securitytracker.com/id?1023133
36924
http://www.securityfocus.com/bid/36924
37265
http://secunia.com/advisories/37265
37479
http://secunia.com/advisories/37479
37677
59697
http://osvdb.org/59697
DSA-1952
FEDORA-2009-11070
https://www.redhat.com/archives/fedora-package-announce/2009-November/msg00789.html
FEDORA-2009-11126
https://www.redhat.com/archives/fedora-package-announce/2009-November/msg00838.html
http://downloads.asterisk.org/pub/security/AST-2009-008.html
https://bugzilla.redhat.com/show_bug.cgi?id=523277
https://bugzilla.redhat.com/show_bug.cgi?id=533137
Common Vulnerability Exposure (CVE) ID: CVE-2008-7220
Bugtraq: 20190509 dotCMS v5.1.1 Vulnerabilities (Google Search)
https://seclists.org/bugtraq/2019/May/18
http://seclists.org/fulldisclosure/2019/May/13
http://seclists.org/fulldisclosure/2019/May/11
http://seclists.org/fulldisclosure/2019/May/10
http://packetstormsecurity.com/files/152787/dotCMS-5.1.1-Vulnerable-Dependencies.html
http://www.openwall.com/lists/oss-security/2009/11/07/2
https://lists.apache.org/thread.html/7ba863c5a4a0f1230cba2d11cf4de3a2eda3a42e8023d4990f564327@%3Cdev.zookeeper.apache.org%3E
https://lists.apache.org/thread.html/769fcc5f331b61c4d7ce16b807678e9a1799628d0146322e14aa24ed@%3Cdev.zookeeper.apache.org%3E
https://lists.apache.org/thread.html/6d1b9a75a004dab42c81e8aa149d90e6fd26ce8cd6d71295e565e366@%3Cissues.zookeeper.apache.org%3E
https://lists.apache.org/thread.html/2ad48cd9d47edd0e677082eb869115809473a117e1e30b52fb511590@%3Cissues.zookeeper.apache.org%3E
https://lists.apache.org/thread.html/eff7280055fc717ea8129cd28a9dd57b8446d00b36260c1caee10b87@%3Cnotifications.zookeeper.apache.org%3E
http://osvdb.org/46312

Copyright Copyright (C) 2011 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.69023
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 201006-20 (asterisk)
Resumen:	The remote host is missing updates announced in;advisory GLSA 201006-20.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 201006-20. Vulnerability Insight: Multiple vulnerabilities in Asterisk might allow remote attackers to cause a Denial of Service condition, or conduct other attacks. Solution: All Asterisk users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-misc/asterisk-1.2.37' CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-2726 BugTraq ID: 36015 http://www.securityfocus.com/bid/36015 Bugtraq: 20090811 AST-2009-005: Remote Crash Vulnerability in SIP channel driver (Google Search) http://www.securityfocus.com/archive/1/505669/100/0/threaded http://labs.mudynamics.com/advisories/MU-200908-01.txt http://www.securitytracker.com/id?1022705 http://secunia.com/advisories/36227 http://www.vupen.com/english/advisories/2009/2229 Common Vulnerability Exposure (CVE) ID: CVE-2009-2346 BugTraq ID: 36275 http://www.securityfocus.com/bid/36275 Bugtraq: 20090903 AST-2009-006: IAX2 Call Number Resource Exhaustion (Google Search) http://www.securityfocus.com/archive/1/506257/100/0/threaded http://securitytracker.com/id?1022819 http://secunia.com/advisories/36593 Common Vulnerability Exposure (CVE) ID: CVE-2009-4055 BugTraq ID: 37153 http://www.securityfocus.com/bid/37153 Bugtraq: 20091130 AST-2009-010: RTP Remote Crash Vulnerability (Google Search) http://www.securityfocus.com/archive/1/508147/100/0/threaded Debian Security Information: DSA-1952 (Google Search) http://www.debian.org/security/2009/dsa-1952 http://www.redhat.com/archives/fedora-package-announce/2009-December/msg00759.html http://www.osvdb.org/60569 http://securitytracker.com/id?1023249 http://secunia.com/advisories/37530 http://secunia.com/advisories/37677 http://secunia.com/advisories/37708 http://www.vupen.com/english/advisories/2009/3368 XForce ISS Database: asterisk-rtp-comfortnoise-dos(54471) https://exchange.xforce.ibmcloud.com/vulnerabilities/54471 Common Vulnerability Exposure (CVE) ID: CVE-2009-3727 1023133 http://www.securitytracker.com/id?1023133 36924 http://www.securityfocus.com/bid/36924 37265 http://secunia.com/advisories/37265 37479 http://secunia.com/advisories/37479 37677 59697 http://osvdb.org/59697 DSA-1952 FEDORA-2009-11070 https://www.redhat.com/archives/fedora-package-announce/2009-November/msg00789.html FEDORA-2009-11126 https://www.redhat.com/archives/fedora-package-announce/2009-November/msg00838.html http://downloads.asterisk.org/pub/security/AST-2009-008.html https://bugzilla.redhat.com/show_bug.cgi?id=523277 https://bugzilla.redhat.com/show_bug.cgi?id=533137 Common Vulnerability Exposure (CVE) ID: CVE-2008-7220 Bugtraq: 20190509 dotCMS v5.1.1 Vulnerabilities (Google Search) https://seclists.org/bugtraq/2019/May/18 http://seclists.org/fulldisclosure/2019/May/13 http://seclists.org/fulldisclosure/2019/May/11 http://seclists.org/fulldisclosure/2019/May/10 http://packetstormsecurity.com/files/152787/dotCMS-5.1.1-Vulnerable-Dependencies.html http://www.openwall.com/lists/oss-security/2009/11/07/2 https://lists.apache.org/thread.html/7ba863c5a4a0f1230cba2d11cf4de3a2eda3a42e8023d4990f564327@%3Cdev.zookeeper.apache.org%3E https://lists.apache.org/thread.html/769fcc5f331b61c4d7ce16b807678e9a1799628d0146322e14aa24ed@%3Cdev.zookeeper.apache.org%3E https://lists.apache.org/thread.html/6d1b9a75a004dab42c81e8aa149d90e6fd26ce8cd6d71295e565e366@%3Cissues.zookeeper.apache.org%3E https://lists.apache.org/thread.html/2ad48cd9d47edd0e677082eb869115809473a117e1e30b52fb511590@%3Cissues.zookeeper.apache.org%3E https://lists.apache.org/thread.html/eff7280055fc717ea8129cd28a9dd57b8446d00b36260c1caee10b87@%3Cnotifications.zookeeper.apache.org%3E http://osvdb.org/46312
Copyright	Copyright (C) 2011 E-Soft Inc.