ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2018.0043
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2018-0043)
Resumen:	The remote host is missing an update for the 'libextractor' package(s) announced via the MGASA-2018-0043 advisory.
Descripción:	Summary: The remote host is missing an update for the 'libextractor' package(s) announced via the MGASA-2018-0043 advisory. Vulnerability Insight: GNU Libextractor 1.6 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted GIF, IT (Impulse Tracker), NSFE, S3M (Scream Tracker 3), SID, or XM (eXtended Module) file, as demonstrated by the EXTRACTOR_xm_extract_method function in plugins/xm_extractor.c (CVE-2017-17440). Affected Software/OS: 'libextractor' package(s) on Mageia 5, Mageia 6. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-17440 BugTraq ID: 102116 http://www.securityfocus.com/bid/102116 https://bugs.debian.org/883528#35 https://gnunet.org/git/libextractor.git/commit/?id=7cc63b001ceaf81143795321379c835486d0c92e https://lists.gnu.org/archive/html/bug-libextractor/2017-11/msg00000.html https://lists.gnu.org/archive/html/bug-libextractor/2017-11/msg00001.html https://lists.gnu.org/archive/html/bug-libextractor/2017-11/msg00002.html https://lists.gnu.org/archive/html/bug-libextractor/2017-11/msg00004.html https://lists.gnu.org/archive/html/bug-libextractor/2017-11/msg00005.html
Copyright	Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.