Slackware Local Security Checks : Slackware: Security Advisory (SSA:2024-206-01)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.13.2024.206.01

Categoría: Slackware Local Security Checks

Título: Slackware: Security Advisory (SSA:2024-206-01)

Resumen: The remote host is missing an update for the 'htdig' package(s) announced via the SSA:2024-206-01 advisory.

Descripción: Summary:
The remote host is missing an update for the 'htdig' package(s) announced via the SSA:2024-206-01 advisory.

Vulnerability Insight:
New htdig packages are available for Slackware 15.0 and -current to
fix a security issue.

Here are the details from the Slackware 15.0 ChangeLog:
+--------------------------+
patches/packages/htdig-3.2.0b6-i586-10_slack15.0.txz: Rebuilt.
Patch XSS vulnerability. Thanks to jayjwa.
Get this out of cgi-bin. Thanks to LuckyCyborg.
For more information, see:
[link moved to references]
(* Security fix *)
+--------------------------+

Affected Software/OS:
'htdig' package(s) on Slackware 15.0, Slackware current.

Solution:
Please install the updated package(s).

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:P/A:N

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2007-6110
BugTraq ID: 26610
http://www.securityfocus.com/bid/26610
Debian Security Information: DSA-1429 (Google Search)
http://www.debian.org/security/2007/dsa-1429
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00116.html
http://sourceforge.net/mailarchive/forum.php?thread_name=200709251310.55835.mskibbe%40suse.de&forum_name=htdig-dev
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11515
http://www.redhat.com/support/errata/RHSA-2007-1095.html
http://securitytracker.com/id?1019010
http://secunia.com/advisories/27850
http://secunia.com/advisories/27890
http://secunia.com/advisories/27965
http://secunia.com/advisories/28062
SuSE Security Announcement: SUSE-SR:2007:025 (Google Search)
http://www.novell.com/linux/security/advisories/2007_25_sr.html
http://www.vupen.com/english/advisories/2007/4038

Copyright Copyright (C) 2024 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.13.2024.206.01
Categoría:	Slackware Local Security Checks
Título:	Slackware: Security Advisory (SSA:2024-206-01)
Resumen:	The remote host is missing an update for the 'htdig' package(s) announced via the SSA:2024-206-01 advisory.
Descripción:	Summary: The remote host is missing an update for the 'htdig' package(s) announced via the SSA:2024-206-01 advisory. Vulnerability Insight: New htdig packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: +--------------------------+ patches/packages/htdig-3.2.0b6-i586-10_slack15.0.txz: Rebuilt. Patch XSS vulnerability. Thanks to jayjwa. Get this out of cgi-bin. Thanks to LuckyCyborg. For more information, see: [link moved to references] (* Security fix *) +--------------------------+ Affected Software/OS: 'htdig' package(s) on Slackware 15.0, Slackware current. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-6110 BugTraq ID: 26610 http://www.securityfocus.com/bid/26610 Debian Security Information: DSA-1429 (Google Search) http://www.debian.org/security/2007/dsa-1429 https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00116.html http://sourceforge.net/mailarchive/forum.php?thread_name=200709251310.55835.mskibbe%40suse.de&forum_name=htdig-dev https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11515 http://www.redhat.com/support/errata/RHSA-2007-1095.html http://securitytracker.com/id?1019010 http://secunia.com/advisories/27850 http://secunia.com/advisories/27890 http://secunia.com/advisories/27965 http://secunia.com/advisories/28062 SuSE Security Announcement: SUSE-SR:2007:025 (Google Search) http://www.novell.com/linux/security/advisories/2007_25_sr.html http://www.vupen.com/english/advisories/2007/4038
Copyright	Copyright (C) 2024 Greenbone AG