Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2019-0325)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2019.0325

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2019-0325)

Resumen: The remote host is missing an update for the 'fribidi' package(s) announced via the MGASA-2019-0325 advisory.

Descripción: Summary:
The remote host is missing an update for the 'fribidi' package(s) announced via the MGASA-2019-0325 advisory.

Vulnerability Insight:
Updated fribidi packages fix security vulnerability:

A stack buffer overflow in the fribidi_get_par_embedding_levels_ex()
function in lib/fribidi-bidi.c of GNU FriBidi 1.0.0 through 1.0.7 allows
an attacker to cause a denial of service or possibly execute arbitrary
code by delivering crafted text content to a user, when this content is
then rendered by an application that uses FriBidi for text layout
calculations (CVE-2019-18397).

Affected Software/OS:
'fribidi' package(s) on Mageia 7.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2019-18397
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TFS3N6KKXPI6ATDNEUFRSLX7R6BOBNIP/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W5UJRTG32FDNI7T637Q6PZYL3UCRR5HR/
https://security.gentoo.org/glsa/202003-41
https://github.com/fribidi/fribidi/commit/034c6e9a1d296286305f4cfd1e0072b879f52568
https://marc.info/?l=oss-security&m=157322128105807&w=2
https://security-tracker.debian.org/tracker/CVE-2019-18397
RedHat Security Advisories: RHSA-2019:4326
https://access.redhat.com/errata/RHSA-2019:4326
RedHat Security Advisories: RHSA-2019:4361
https://access.redhat.com/errata/RHSA-2019:4361
RedHat Security Advisories: RHSA-2020:0291
https://access.redhat.com/errata/RHSA-2020:0291

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2019.0325
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2019-0325)
Resumen:	The remote host is missing an update for the 'fribidi' package(s) announced via the MGASA-2019-0325 advisory.
Descripción:	Summary: The remote host is missing an update for the 'fribidi' package(s) announced via the MGASA-2019-0325 advisory. Vulnerability Insight: Updated fribidi packages fix security vulnerability: A stack buffer overflow in the fribidi_get_par_embedding_levels_ex() function in lib/fribidi-bidi.c of GNU FriBidi 1.0.0 through 1.0.7 allows an attacker to cause a denial of service or possibly execute arbitrary code by delivering crafted text content to a user, when this content is then rendered by an application that uses FriBidi for text layout calculations (CVE-2019-18397). Affected Software/OS: 'fribidi' package(s) on Mageia 7. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-18397 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TFS3N6KKXPI6ATDNEUFRSLX7R6BOBNIP/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W5UJRTG32FDNI7T637Q6PZYL3UCRR5HR/ https://security.gentoo.org/glsa/202003-41 https://github.com/fribidi/fribidi/commit/034c6e9a1d296286305f4cfd1e0072b879f52568 https://marc.info/?l=oss-security&m=157322128105807&w=2 https://security-tracker.debian.org/tracker/CVE-2019-18397 RedHat Security Advisories: RHSA-2019:4326 https://access.redhat.com/errata/RHSA-2019:4326 RedHat Security Advisories: RHSA-2019:4361 https://access.redhat.com/errata/RHSA-2019:4361 RedHat Security Advisories: RHSA-2020:0291 https://access.redhat.com/errata/RHSA-2020:0291
Copyright	Copyright (C) 2022 Greenbone AG