 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.883176 |
| Categoría: | CentOS Local Security Checks |
| Título: | CentOS: Security Advisory for emacs-git (CESA-2020:0316) |
| Resumen: | The remote host is missing an update for the 'emacs-git'; package(s) announced via the CESA-2020:0316 advisory. |
| Descripción: | Summary: The remote host is missing an update for the 'emacs-git' package(s) announced via the CESA-2020:0316 advisory. Vulnerability Insight: Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection. Security Fix(es): * git: arbitrary code execution via .gitmodules (CVE-2018-17456) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Affected Software/OS: 'emacs-git' package(s) on CentOS 6. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2018-17456 BugTraq ID: 105523 http://www.securityfocus.com/bid/105523 BugTraq ID: 107511 http://www.securityfocus.com/bid/107511 Bugtraq: 20190320 March 2019 Sourcetree Advisory - Multiple Remote Code Execution Vulnerabilities (Google Search) https://seclists.org/bugtraq/2019/Mar/30 Debian Security Information: DSA-4311 (Google Search) https://www.debian.org/security/2018/dsa-4311 https://www.exploit-db.com/exploits/45548/ https://www.exploit-db.com/exploits/45631/ http://packetstormsecurity.com/files/152173/Sourcetree-Git-Arbitrary-Code-Execution-URL-Handling.html https://github.com/git/git/commit/1a7fd1fb2998002da6e9ff2ee46e1bdd25ee8404 https://github.com/git/git/commit/a124133e1e6ab5c7a9fef6d0e6bcb084e3455b46 https://marc.info/?l=git&m=153875888916397&w=2 https://www.openwall.com/lists/oss-security/2018/10/06/3 RedHat Security Advisories: RHSA-2018:3408 https://access.redhat.com/errata/RHSA-2018:3408 RedHat Security Advisories: RHSA-2018:3505 https://access.redhat.com/errata/RHSA-2018:3505 RedHat Security Advisories: RHSA-2018:3541 https://access.redhat.com/errata/RHSA-2018:3541 RedHat Security Advisories: RHSA-2020:0316 https://access.redhat.com/errata/RHSA-2020:0316 http://www.securitytracker.com/id/1041811 SuSE Security Announcement: openSUSE-SU-2020:0598 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00003.html https://usn.ubuntu.com/3791-1/ |
| Copyright | Copyright (C) 2020 Greenbone Networks GmbH |
| Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |