Gentoo Local Security Checks : Gentoo Security Advisory GLSA 201209-10 (calligra)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.72427

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 201209-10 (calligra)

Resumen: The remote host is missing updates announced in;advisory GLSA 201209-10.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 201209-10.

Vulnerability Insight:
A buffer overflow vulnerability in Calligra could result in the
execution of arbitrary code.

Solution:
All Calligra users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=app-office/calligra-2.4.3-r1'

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2012-3456
50050
http://secunia.com/advisories/50050
54816
http://www.securityfocus.com/bid/54816
HPSBMU02873
http://marc.info/?l=bugtraq&m=136733075705494&w=2
SSRT101182
USN-1525-1
http://www.ubuntu.com/usn/USN-1525-1
[oss-security] 20120804 CVE request for Calligra
http://www.openwall.com/lists/oss-security/2012/08/04/1
[oss-security] 20120804 Re: CVE request for Calligra
http://www.openwall.com/lists/oss-security/2012/08/04/5
[oss-security] 20120805 Re: CVE request for Calligra
http://www.openwall.com/lists/oss-security/2012/08/06/1
[oss-security] 20120806 Re: CVE request for Calligra
http://www.openwall.com/lists/oss-security/2012/08/06/6
[oss-security] 20120810 Re: CVE request for Calligra
http://www.openwall.com/lists/oss-security/2012/08/10/1
calligra-styles-bo(77482)
https://exchange.xforce.ibmcloud.com/vulnerabilities/77482
http://media.blackhat.com/bh-us-12/Briefings/C_Miller/BH_US_12_Miller_NFC_attack_surface_WP.pdf
http://www.kde.org/info/security/advisory-20120810-1.txt
openSUSE-SU-2012:1061
http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00026.html

Copyright Copyright (C) 2012 E-Soft Inc.

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.72427
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 201209-10 (calligra)
Resumen:	The remote host is missing updates announced in;advisory GLSA 201209-10.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 201209-10. Vulnerability Insight: A buffer overflow vulnerability in Calligra could result in the execution of arbitrary code. Solution: All Calligra users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-office/calligra-2.4.3-r1' CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-3456 50050 http://secunia.com/advisories/50050 54816 http://www.securityfocus.com/bid/54816 HPSBMU02873 http://marc.info/?l=bugtraq&m=136733075705494&w=2 SSRT101182 USN-1525-1 http://www.ubuntu.com/usn/USN-1525-1 [oss-security] 20120804 CVE request for Calligra http://www.openwall.com/lists/oss-security/2012/08/04/1 [oss-security] 20120804 Re: CVE request for Calligra http://www.openwall.com/lists/oss-security/2012/08/04/5 [oss-security] 20120805 Re: CVE request for Calligra http://www.openwall.com/lists/oss-security/2012/08/06/1 [oss-security] 20120806 Re: CVE request for Calligra http://www.openwall.com/lists/oss-security/2012/08/06/6 [oss-security] 20120810 Re: CVE request for Calligra http://www.openwall.com/lists/oss-security/2012/08/10/1 calligra-styles-bo(77482) https://exchange.xforce.ibmcloud.com/vulnerabilities/77482 http://media.blackhat.com/bh-us-12/Briefings/C_Miller/BH_US_12_Miller_NFC_attack_surface_WP.pdf http://www.kde.org/info/security/advisory-20120810-1.txt openSUSE-SU-2012:1061 http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00026.html
Copyright	Copyright (C) 2012 E-Soft Inc.