ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2017.0319
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2017-0319)
Resumen:	The remote host is missing an update for the 'libgit2' package(s) announced via the MGASA-2017-0319 advisory.
Descripción:	Summary: The remote host is missing an update for the 'libgit2' package(s) announced via the MGASA-2017-0319 advisory. Vulnerability Insight: Read out-of-bounds in git_oid_nfmt (CVE-2016-8568). DoS using a null pointer dereference in git_commit_message (CVE-2016-8569). Insufficient sanitization allows some edge cases in the Git Smart Protocol which can lead to reading outside of a buffer (CVE-2016-10128, CVE-2016-10129). Affected Software/OS: 'libgit2' package(s) on Mageia 5. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-10128 BugTraq ID: 95338 http://www.securityfocus.com/bid/95338 http://www.openwall.com/lists/oss-security/2017/01/10/5 http://www.openwall.com/lists/oss-security/2017/01/11/6 SuSE Security Announcement: openSUSE-SU-2017:0397 (Google Search) http://lists.opensuse.org/opensuse-updates/2017-02/msg00030.html SuSE Security Announcement: openSUSE-SU-2017:0405 (Google Search) http://lists.opensuse.org/opensuse-updates/2017-02/msg00036.html SuSE Security Announcement: openSUSE-SU-2017:0484 (Google Search) http://lists.opensuse.org/opensuse-updates/2017-02/msg00072.html Common Vulnerability Exposure (CVE) ID: CVE-2016-10129 BugTraq ID: 95339 http://www.securityfocus.com/bid/95339 Common Vulnerability Exposure (CVE) ID: CVE-2016-8568 BugTraq ID: 93466 http://www.securityfocus.com/bid/93466 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XVUEIG6EESZB6BRU2IE3F5NRUEHMAEKC/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X3JBSNJAXP7JA3TGE2NPNRTD77JXFG4E/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4E77DG5KGQ7L34U75QY7O6NIPKZNQHQJ/ http://www.openwall.com/lists/oss-security/2016/10/08/7 SuSE Security Announcement: openSUSE-SU-2016:3097 (Google Search) http://lists.opensuse.org/opensuse-updates/2016-12/msg00075.html SuSE Security Announcement: openSUSE-SU-2017:0184 (Google Search) http://lists.opensuse.org/opensuse-updates/2017-01/msg00103.html SuSE Security Announcement: openSUSE-SU-2017:0195 (Google Search) http://lists.opensuse.org/opensuse-updates/2017-01/msg00110.html SuSE Security Announcement: openSUSE-SU-2017:0208 (Google Search) http://lists.opensuse.org/opensuse-updates/2017-01/msg00114.html Common Vulnerability Exposure (CVE) ID: CVE-2016-8569 BugTraq ID: 93465 http://www.securityfocus.com/bid/93465
Copyright	Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.