Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2013-0173)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2013.0173

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2013-0173)

Resumen: The remote host is missing an update for the 'dbus' package(s) announced via the MGASA-2013-0173 advisory.

Descripción: Summary:
The remote host is missing an update for the 'dbus' package(s) announced via the MGASA-2013-0173 advisory.

Vulnerability Insight:
Alexandru Cornea discovered a vulnerability in libdbus caused by an
implementation bug in _dbus_printf_string_upper_bound(). This
vulnerability can be exploited by a local user to crash system services
that use libdbus, causing denial of service. Depending on the dbus
services running, it could lead to complete system crash (CVE-2013-2168).

This problem only currently appears to affect the x86_64 version of Mageia
but we advise that all systems should be updated.

Affected Software/OS:
'dbus' package(s) on Mageia 2, Mageia 3.

Solution:
Please install the updated package(s).

CVSS Score:
1.9

CVSS Vector:
AV:L/AC:M/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2013-2168
BugTraq ID: 60546
http://www.securityfocus.com/bid/60546
Debian Security Information: DSA-2707 (Google Search)
http://www.debian.org/security/2013/dsa-2707
http://lists.fedoraproject.org/pipermail/package-announce/2013-June/110114.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-June/109896.html
http://www.mandriva.com/security/advisories?name=MDVSA-2013:177
http://lists.freedesktop.org/archives/dbus/2013-June/015696.html
http://www.openwall.com/lists/oss-security/2013/06/13/2
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16881
http://www.securitytracker.com/id/1028667
http://secunia.com/advisories/53317
http://secunia.com/advisories/53832
SuSE Security Announcement: openSUSE-SU-2013:1118 (Google Search)
http://lists.opensuse.org/opensuse-updates/2013-07/msg00003.html
SuSE Security Announcement: openSUSE-SU-2014:1239 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-09/msg00049.html
http://www.ubuntu.com/usn/USN-1874-1

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2013.0173
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2013-0173)
Resumen:	The remote host is missing an update for the 'dbus' package(s) announced via the MGASA-2013-0173 advisory.
Descripción:	Summary: The remote host is missing an update for the 'dbus' package(s) announced via the MGASA-2013-0173 advisory. Vulnerability Insight: Alexandru Cornea discovered a vulnerability in libdbus caused by an implementation bug in _dbus_printf_string_upper_bound(). This vulnerability can be exploited by a local user to crash system services that use libdbus, causing denial of service. Depending on the dbus services running, it could lead to complete system crash (CVE-2013-2168). This problem only currently appears to affect the x86_64 version of Mageia but we advise that all systems should be updated. Affected Software/OS: 'dbus' package(s) on Mageia 2, Mageia 3. Solution: Please install the updated package(s). CVSS Score: 1.9 CVSS Vector: AV:L/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-2168 BugTraq ID: 60546 http://www.securityfocus.com/bid/60546 Debian Security Information: DSA-2707 (Google Search) http://www.debian.org/security/2013/dsa-2707 http://lists.fedoraproject.org/pipermail/package-announce/2013-June/110114.html http://lists.fedoraproject.org/pipermail/package-announce/2013-June/109896.html http://www.mandriva.com/security/advisories?name=MDVSA-2013:177 http://lists.freedesktop.org/archives/dbus/2013-June/015696.html http://www.openwall.com/lists/oss-security/2013/06/13/2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16881 http://www.securitytracker.com/id/1028667 http://secunia.com/advisories/53317 http://secunia.com/advisories/53832 SuSE Security Announcement: openSUSE-SU-2013:1118 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-07/msg00003.html SuSE Security Announcement: openSUSE-SU-2014:1239 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-09/msg00049.html http://www.ubuntu.com/usn/USN-1874-1
Copyright	Copyright (C) 2022 Greenbone AG