Gentoo Local Security Checks : Gentoo Security Advisory GLSA 201210-05 (bash)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.72521

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 201210-05 (bash)

Resumen: The remote host is missing updates announced in;advisory GLSA 201210-05.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 201210-05.

Vulnerability Insight:
Two vulnerabilities have been found in Bash, the worst of which may
allow execution of arbitrary code.

Solution:
All Bash users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=app-shells/bash-4.2_p37'

CVSS Score:
6.9

CVSS Vector:
AV:L/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2008-5374
BugTraq ID: 32733
http://www.securityfocus.com/bid/32733
http://security.gentoo.org/glsa/glsa-201210-05.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2010:004
http://uvw.ru/report.sid.txt
http://lists.debian.org/debian-devel/2008/08/msg00347.html
http://www.redhat.com/support/errata/RHSA-2011-0261.html
http://www.redhat.com/support/errata/RHSA-2011-1073.html
http://secunia.com/advisories/43365
http://secunia.com/advisories/51086
http://www.vupen.com/english/advisories/2011/0414
Common Vulnerability Exposure (CVE) ID: CVE-2012-3410
51086
54937
http://www.securityfocus.com/bid/54937
GLSA-201210-05
MDVSA-2012:128
http://www.mandriva.com/security/advisories?name=MDVSA-2012:128
[oss-security] 20120711 CVE Request: Overflow fix in bash 4.2 patch 33
http://www.openwall.com/lists/oss-security/2012/07/11/11
[oss-security] 20120712 Re: CVE Request: Overflow fix in bash 4.2 patch 33
http://www.openwall.com/lists/oss-security/2012/07/11/22
http://www.openwall.com/lists/oss-security/2012/07/12/4
bash-devfd-bo(77551)
https://exchange.xforce.ibmcloud.com/vulnerabilities/77551
ftp://ftp.gnu.org/pub/gnu/bash/bash-4.2-patches/bash42-033
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=681278
openSUSE-SU-2012:0898
https://hermes.opensuse.org/messages/15227834

Copyright Copyright (C) 2012 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.72521
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 201210-05 (bash)
Resumen:	The remote host is missing updates announced in;advisory GLSA 201210-05.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 201210-05. Vulnerability Insight: Two vulnerabilities have been found in Bash, the worst of which may allow execution of arbitrary code. Solution: All Bash users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-shells/bash-4.2_p37' CVSS Score: 6.9 CVSS Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-5374 BugTraq ID: 32733 http://www.securityfocus.com/bid/32733 http://security.gentoo.org/glsa/glsa-201210-05.xml http://www.mandriva.com/security/advisories?name=MDVSA-2010:004 http://uvw.ru/report.sid.txt http://lists.debian.org/debian-devel/2008/08/msg00347.html http://www.redhat.com/support/errata/RHSA-2011-0261.html http://www.redhat.com/support/errata/RHSA-2011-1073.html http://secunia.com/advisories/43365 http://secunia.com/advisories/51086 http://www.vupen.com/english/advisories/2011/0414 Common Vulnerability Exposure (CVE) ID: CVE-2012-3410 51086 54937 http://www.securityfocus.com/bid/54937 GLSA-201210-05 MDVSA-2012:128 http://www.mandriva.com/security/advisories?name=MDVSA-2012:128 [oss-security] 20120711 CVE Request: Overflow fix in bash 4.2 patch 33 http://www.openwall.com/lists/oss-security/2012/07/11/11 [oss-security] 20120712 Re: CVE Request: Overflow fix in bash 4.2 patch 33 http://www.openwall.com/lists/oss-security/2012/07/11/22 http://www.openwall.com/lists/oss-security/2012/07/12/4 bash-devfd-bo(77551) https://exchange.xforce.ibmcloud.com/vulnerabilities/77551 ftp://ftp.gnu.org/pub/gnu/bash/bash-4.2-patches/bash42-033 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=681278 openSUSE-SU-2012:0898 https://hermes.opensuse.org/messages/15227834
Copyright	Copyright (C) 2012 E-Soft Inc.