Gentoo Local Security Checks : Gentoo Security Advisory GLSA 201201-18 (bip)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.70819

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 201201-18 (bip)

Resumen: The remote host is missing updates announced in;advisory GLSA 201201-18.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 201201-18.

Vulnerability Insight:
Multiple vulnerabilities in bip might allow remote unauthenticated
attackers to cause a Denial of Service or possibly execute arbitrary
code.

Solution:
All bip users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-irc/bip-0.8.8-r1'

NOTE: The CVE-2010-3071 flaw was already corrected in an earlier version
of bip and is included in this advisory for completeness.

CVSS Score:
6.5

CVSS Vector:
AV:N/AC:L/Au:S/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-3071
42889
http://secunia.com/advisories/42889
42995
http://www.securityfocus.com/bid/42995
ADV-2011-0096
http://www.vupen.com/english/advisories/2011/0096
FEDORA-2010-15774
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052992.html
[oss-security] 20100905 CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials
http://www.openwall.com/lists/oss-security/2010/09/05/1
[oss-security] 20100907 Re: CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials
http://www.openwall.com/lists/oss-security/2010/09/07/6
http://bip.t1r.net/
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=595409
https://bugzilla.redhat.com/show_bug.cgi?id=630437
Common Vulnerability Exposure (CVE) ID: CVE-2012-0806
47679
http://secunia.com/advisories/47679
FEDORA-2012-0916
http://lists.fedoraproject.org/pipermail/package-announce/2012-February/072767.html
FEDORA-2012-0941
http://lists.fedoraproject.org/pipermail/package-announce/2012-February/072752.html
MDVSA-2013:063
http://www.mandriva.com/security/advisories?name=MDVSA-2013:063
[oss-security] 20120124 CVE request: bip buffer overflow
http://openwall.com/lists/oss-security/2012/01/24/4
[oss-security] 20120124 Re: CVE request: bip buffer overflow
http://openwall.com/lists/oss-security/2012/01/24/10
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=657217
https://projects.duckcorp.org/issues/269
https://projects.duckcorp.org/projects/bip/repository/revisions/222a33cb84a2e52ad55a88900b7895bf9dd0262c

Copyright Copyright (C) 2012 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.70819
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 201201-18 (bip)
Resumen:	The remote host is missing updates announced in;advisory GLSA 201201-18.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 201201-18. Vulnerability Insight: Multiple vulnerabilities in bip might allow remote unauthenticated attackers to cause a Denial of Service or possibly execute arbitrary code. Solution: All bip users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-irc/bip-0.8.8-r1' NOTE: The CVE-2010-3071 flaw was already corrected in an earlier version of bip and is included in this advisory for completeness. CVSS Score: 6.5 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3071 42889 http://secunia.com/advisories/42889 42995 http://www.securityfocus.com/bid/42995 ADV-2011-0096 http://www.vupen.com/english/advisories/2011/0096 FEDORA-2010-15774 http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052992.html [oss-security] 20100905 CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials http://www.openwall.com/lists/oss-security/2010/09/05/1 [oss-security] 20100907 Re: CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials http://www.openwall.com/lists/oss-security/2010/09/07/6 http://bip.t1r.net/ http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=595409 https://bugzilla.redhat.com/show_bug.cgi?id=630437 Common Vulnerability Exposure (CVE) ID: CVE-2012-0806 47679 http://secunia.com/advisories/47679 FEDORA-2012-0916 http://lists.fedoraproject.org/pipermail/package-announce/2012-February/072767.html FEDORA-2012-0941 http://lists.fedoraproject.org/pipermail/package-announce/2012-February/072752.html MDVSA-2013:063 http://www.mandriva.com/security/advisories?name=MDVSA-2013:063 [oss-security] 20120124 CVE request: bip buffer overflow http://openwall.com/lists/oss-security/2012/01/24/4 [oss-security] 20120124 Re: CVE request: bip buffer overflow http://openwall.com/lists/oss-security/2012/01/24/10 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=657217 https://projects.duckcorp.org/issues/269 https://projects.duckcorp.org/projects/bip/repository/revisions/222a33cb84a2e52ad55a88900b7895bf9dd0262c
Copyright	Copyright (C) 2012 E-Soft Inc.