ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2018.0277
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2018-0277)
Resumen:	The remote host is missing an update for the 'patch' package(s) announced via the MGASA-2018-0277 advisory.
Descripción:	Summary: The remote host is missing an update for the 'patch' package(s) announced via the MGASA-2018-0277 advisory. Vulnerability Insight: Updated patch package fixes security vulnerabilities: It was discovered that Patch incorrectly handled certain files. An attacker could possibly use this to cause a denial of service (CVE-2016-10713). It was discovered that Patch incorrectly handled certain inputs. An attacker could possibly use this to cause a denial of service (CVE-2018-6951). It was discovered that Patch incorrectly handled certain input validation. An attacker could possibly use this to execute arbitrary code (CVE-2018-1000156). Affected Software/OS: 'patch' package(s) on Mageia 5, Mageia 6. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-10713 BugTraq ID: 103063 http://www.securityfocus.com/bid/103063 https://git.savannah.gnu.org/cgit/patch.git/commit/src/pch.c?id=a0d7fe4589651c64bd16ddaaa634030bb0455866 RedHat Security Advisories: RHSA-2019:2033 https://access.redhat.com/errata/RHSA-2019:2033 https://usn.ubuntu.com/3624-1/ https://usn.ubuntu.com/3624-2/ Common Vulnerability Exposure (CVE) ID: CVE-2018-1000156 Bugtraq: 20190730 [SECURITY] [DSA 4489-1] patch security update (Google Search) https://seclists.org/bugtraq/2019/Jul/54 Bugtraq: 20190816 Details about recent GNU patch vulnerabilities (Google Search) https://seclists.org/bugtraq/2019/Aug/29 https://security.gentoo.org/glsa/201904-17 http://packetstormsecurity.com/files/154124/GNU-patch-Command-Injection-Directory-Traversal.html http://rachelbythebay.com/w/2018/04/05/bangpatch/ https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=894667#19 https://twitter.com/kurtseifried/status/982028968877436928 https://lists.debian.org/debian-lts-announce/2018/04/msg00013.html RedHat Security Advisories: RHSA-2018:1199 https://access.redhat.com/errata/RHSA-2018:1199 RedHat Security Advisories: RHSA-2018:1200 https://access.redhat.com/errata/RHSA-2018:1200 RedHat Security Advisories: RHSA-2018:2091 https://access.redhat.com/errata/RHSA-2018:2091 RedHat Security Advisories: RHSA-2018:2092 https://access.redhat.com/errata/RHSA-2018:2092 RedHat Security Advisories: RHSA-2018:2093 https://access.redhat.com/errata/RHSA-2018:2093 RedHat Security Advisories: RHSA-2018:2094 https://access.redhat.com/errata/RHSA-2018:2094 RedHat Security Advisories: RHSA-2018:2095 https://access.redhat.com/errata/RHSA-2018:2095 RedHat Security Advisories: RHSA-2018:2096 https://access.redhat.com/errata/RHSA-2018:2096 RedHat Security Advisories: RHSA-2018:2097 https://access.redhat.com/errata/RHSA-2018:2097 Common Vulnerability Exposure (CVE) ID: CVE-2018-6951 BugTraq ID: 103044 http://www.securityfocus.com/bid/103044 https://git.savannah.gnu.org/cgit/patch.git/commit/?id=f290f48a621867084884bfff87f8093c15195e6a https://savannah.gnu.org/bugs/index.php?53132
Copyright	Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.