Búsqueda de    
Vulnerabilidad   
    Buscar 191973 Descripciones CVE y
86218 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.702688
Categoría:Debian Local Security Checks
Título:Debian Security Advisory DSA 2688-1 (libxres - several vulnerabilities)
Resumen:Ilja van Sprundel of IOActive discovered several security issues in;multiple components of the X.org graphics stack and the related;libraries: Various integer overflows, sign handling errors in integer;conversions, buffer overflows, memory corruption and missing input;sanitising may lead to privilege escalation or denial of service.
Descripción:Summary:
Ilja van Sprundel of IOActive discovered several security issues in
multiple components of the X.org graphics stack and the related
libraries: Various integer overflows, sign handling errors in integer
conversions, buffer overflows, memory corruption and missing input
sanitising may lead to privilege escalation or denial of service.

Affected Software/OS:
libxres on Debian Linux

Solution:
For the oldstable distribution (squeeze), this problem has been fixed in
version 2:1.0.4-1+squeeze.

For the stable distribution (wheezy), this problem has been fixed in
version 2:1.0.6-1+deb7u1.

For the unstable distribution (sid), this problem has been fixed in
version 2:1.0.6-1+deb7u1.

We recommend that you upgrade your libxres packages.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2013-1988
Debian Security Information: DSA-2688 (Google Search)
http://www.debian.org/security/2013/dsa-2688
http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106880.html
http://www.openwall.com/lists/oss-security/2013/05/23/3
SuSE Security Announcement: openSUSE-SU-2013:1027 (Google Search)
http://lists.opensuse.org/opensuse-updates/2013-06/msg00155.html
http://www.ubuntu.com/usn/USN-1864-1
CopyrightCopyright (C) 2013 Greenbone Networks GmbH http://greenbone.net

Esta es sólo una de 86218 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.




© 1998-2021 E-Soft Inc. Todos los derechos reservados.