Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2020-0416)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2020.0416

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2020-0416)

Resumen: The remote host is missing an update for the 'kdeconnect-kde' package(s) announced via the MGASA-2020-0416 advisory.

Descripción: Summary:
The remote host is missing an update for the 'kdeconnect-kde' package(s) announced via the MGASA-2020-0416 advisory.

Vulnerability Insight:
An attacker on your local network could send maliciously crafted packets to
other hosts running kdeconnect on the network, causing them to use large
amounts of CPU, memory or network connections, which could be used in a Denial
of Service attack within the network.
(CVE-2020-26164)

Affected Software/OS:
'kdeconnect-kde' package(s) on Mageia 7.

Solution:
Please install the updated package(s).

CVSS Score:
4.9

CVSS Vector:
AV:L/AC:L/Au:N/C:N/I:N/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2020-26164
https://security.gentoo.org/glsa/202101-16
https://bugzilla.suse.com/show_bug.cgi?id=1176268
https://github.com/KDE/kdeconnect-kde/commit/024e5f23db8d8ad3449714b906b46094baaffb89
https://github.com/KDE/kdeconnect-kde/commit/4fbd01a3d44a0bcca888c49a77ec7cfd10e113d7
https://github.com/KDE/kdeconnect-kde/commit/542d94a70c56aa386c8d4d793481ce181b0422e8
https://github.com/KDE/kdeconnect-kde/commit/613899be24b6e2a6b3e5cc719efce8ae8a122991
https://github.com/KDE/kdeconnect-kde/commit/8112729eb0f13e6947984416118531078e65580d
https://github.com/KDE/kdeconnect-kde/commit/ce0f00fc2d3eccb51d0af4eba61a4f60de086a59
https://github.com/KDE/kdeconnect-kde/releases
https://kdeconnect.kde.org/official/
http://www.openwall.com/lists/oss-security/2020/10/13/5
http://www.openwall.com/lists/oss-security/2020/10/13/4
http://www.openwall.com/lists/oss-security/2020/10/14/1
http://www.openwall.com/lists/oss-security/2020/11/30/1
SuSE Security Announcement: openSUSE-SU-2020:1647 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00016.html
SuSE Security Announcement: openSUSE-SU-2020:1650 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00018.html

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2020.0416
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2020-0416)
Resumen:	The remote host is missing an update for the 'kdeconnect-kde' package(s) announced via the MGASA-2020-0416 advisory.
Descripción:	Summary: The remote host is missing an update for the 'kdeconnect-kde' package(s) announced via the MGASA-2020-0416 advisory. Vulnerability Insight: An attacker on your local network could send maliciously crafted packets to other hosts running kdeconnect on the network, causing them to use large amounts of CPU, memory or network connections, which could be used in a Denial of Service attack within the network. (CVE-2020-26164) Affected Software/OS: 'kdeconnect-kde' package(s) on Mageia 7. Solution: Please install the updated package(s). CVSS Score: 4.9 CVSS Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2020-26164 https://security.gentoo.org/glsa/202101-16 https://bugzilla.suse.com/show_bug.cgi?id=1176268 https://github.com/KDE/kdeconnect-kde/commit/024e5f23db8d8ad3449714b906b46094baaffb89 https://github.com/KDE/kdeconnect-kde/commit/4fbd01a3d44a0bcca888c49a77ec7cfd10e113d7 https://github.com/KDE/kdeconnect-kde/commit/542d94a70c56aa386c8d4d793481ce181b0422e8 https://github.com/KDE/kdeconnect-kde/commit/613899be24b6e2a6b3e5cc719efce8ae8a122991 https://github.com/KDE/kdeconnect-kde/commit/8112729eb0f13e6947984416118531078e65580d https://github.com/KDE/kdeconnect-kde/commit/ce0f00fc2d3eccb51d0af4eba61a4f60de086a59 https://github.com/KDE/kdeconnect-kde/releases https://kdeconnect.kde.org/official/ http://www.openwall.com/lists/oss-security/2020/10/13/5 http://www.openwall.com/lists/oss-security/2020/10/13/4 http://www.openwall.com/lists/oss-security/2020/10/14/1 http://www.openwall.com/lists/oss-security/2020/11/30/1 SuSE Security Announcement: openSUSE-SU-2020:1647 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00016.html SuSE Security Announcement: openSUSE-SU-2020:1650 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00018.html
Copyright	Copyright (C) 2022 Greenbone AG