Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2019-0312)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2019.0312

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2019-0312)

Resumen: The remote host is missing an update for the 'libsoup' package(s) announced via the MGASA-2019-0312 advisory.

Descripción: Summary:
The remote host is missing an update for the 'libsoup' package(s) announced via the MGASA-2019-0312 advisory.

Vulnerability Insight:
Updated libsoup package fixes security vulnerability:

It was discovered that libsoup incorrectly handled parsing certain NTLM
messages. If a user or automated system were tricked into connecting to
a malicious server, a remote attacker could possibly use this issue to
cause a denial of service (CVE-2019-17266).

Affected Software/OS:
'libsoup' package(s) on Mageia 7.

Solution:
Please install the updated package(s).

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2019-17266
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=941912
https://github.com/Kirin-say/Vulnerabilities/blob/master/CVE-2019-17266_POC.md
https://gitlab.gnome.org/GNOME/libsoup/commit/88b7dff4467f4151afae244ea7d1223753cd05ab
https://gitlab.gnome.org/GNOME/libsoup/commit/f8a54ac85eec2008c85393f331cdd251af8266ad
https://gitlab.gnome.org/GNOME/libsoup/issues/173
https://security-tracker.debian.org/tracker/CVE-2019-17266
https://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg1705054.html
https://usn.ubuntu.com/4152-1/

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2019.0312
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2019-0312)
Resumen:	The remote host is missing an update for the 'libsoup' package(s) announced via the MGASA-2019-0312 advisory.
Descripción:	Summary: The remote host is missing an update for the 'libsoup' package(s) announced via the MGASA-2019-0312 advisory. Vulnerability Insight: Updated libsoup package fixes security vulnerability: It was discovered that libsoup incorrectly handled parsing certain NTLM messages. If a user or automated system were tricked into connecting to a malicious server, a remote attacker could possibly use this issue to cause a denial of service (CVE-2019-17266). Affected Software/OS: 'libsoup' package(s) on Mageia 7. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-17266 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=941912 https://github.com/Kirin-say/Vulnerabilities/blob/master/CVE-2019-17266_POC.md https://gitlab.gnome.org/GNOME/libsoup/commit/88b7dff4467f4151afae244ea7d1223753cd05ab https://gitlab.gnome.org/GNOME/libsoup/commit/f8a54ac85eec2008c85393f331cdd251af8266ad https://gitlab.gnome.org/GNOME/libsoup/issues/173 https://security-tracker.debian.org/tracker/CVE-2019-17266 https://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg1705054.html https://usn.ubuntu.com/4152-1/
Copyright	Copyright (C) 2022 Greenbone AG