Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2018-0061)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2018.0061

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2018-0061)

Resumen: The remote host is missing an update for the 'wildmidi' package(s) announced via the MGASA-2018-0061 advisory.

Descripción: Summary:
The remote host is missing an update for the 'wildmidi' package(s) announced via the MGASA-2018-0061 advisory.

Vulnerability Insight:
The _WM_SetupMidiEvent function in internal_midi.c:2318 in WildMIDI
before 0.4.2 can cause a denial of service(invalid memory read and
application crash) via a crafted mid file (CVE-2017-11661).

The _WM_ParseNewMidi function in f_midi.c in WildMIDI before 0.4.2 can
cause a denial of service(invalid memory read and application crash) via
a crafted mid file (CVE-2017-11662).

The _WM_SetupMidiEvent function in internal_midi.c:2315 in WildMIDI
before 0.4.2 can cause a denial of service(invalid memory read and
application crash) via a crafted mid file (CVE-2017-11663).

The _WM_SetupMidiEvent function in internal_midi.c:2122 in WildMIDI
before 0.4.2 can cause a denial of service(invalid memory read and
application crash) via a crafted mid file (CVE-2017-11664).

Affected Software/OS:
'wildmidi' package(s) on Mageia 6.

Solution:
Please install the updated package(s).

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2017-11661
https://www.exploit-db.com/exploits/42433/
http://seclists.org/fulldisclosure/2017/Aug/12
Common Vulnerability Exposure (CVE) ID: CVE-2017-11662
Common Vulnerability Exposure (CVE) ID: CVE-2017-11663
Common Vulnerability Exposure (CVE) ID: CVE-2017-11664

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2018.0061
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2018-0061)
Resumen:	The remote host is missing an update for the 'wildmidi' package(s) announced via the MGASA-2018-0061 advisory.
Descripción:	Summary: The remote host is missing an update for the 'wildmidi' package(s) announced via the MGASA-2018-0061 advisory. Vulnerability Insight: The _WM_SetupMidiEvent function in internal_midi.c:2318 in WildMIDI before 0.4.2 can cause a denial of service(invalid memory read and application crash) via a crafted mid file (CVE-2017-11661). The _WM_ParseNewMidi function in f_midi.c in WildMIDI before 0.4.2 can cause a denial of service(invalid memory read and application crash) via a crafted mid file (CVE-2017-11662). The _WM_SetupMidiEvent function in internal_midi.c:2315 in WildMIDI before 0.4.2 can cause a denial of service(invalid memory read and application crash) via a crafted mid file (CVE-2017-11663). The _WM_SetupMidiEvent function in internal_midi.c:2122 in WildMIDI before 0.4.2 can cause a denial of service(invalid memory read and application crash) via a crafted mid file (CVE-2017-11664). Affected Software/OS: 'wildmidi' package(s) on Mageia 6. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-11661 https://www.exploit-db.com/exploits/42433/ http://seclists.org/fulldisclosure/2017/Aug/12 Common Vulnerability Exposure (CVE) ID: CVE-2017-11662 Common Vulnerability Exposure (CVE) ID: CVE-2017-11663 Common Vulnerability Exposure (CVE) ID: CVE-2017-11664
Copyright	Copyright (C) 2022 Greenbone AG