Test ID:	1.3.6.1.4.1.25623.1.0.64457
Category:	Mandrake Local Security Checks
Title:	Mandrake Security Advisory MDVSA-2009:155 (git)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to git announced via advisory MDVSA-2009:155. A vulnerability has been found and corrected in git: git-daemon in git 1.4.4.5 through 1.6.3 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a request containing extra unrecognized arguments (CVE-2009-2108). This update provides fixes for this vulnerability. Affected: 2009.1 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2009:155 CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-2108 BugTraq ID: 35338 http://www.securityfocus.com/bid/35338 https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01045.html https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01126.html https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01056.html http://security.gentoo.org/glsa/glsa-200907-05.xml http://www.mandriva.com/security/advisories?name=MDVSA-2009:155 http://article.gmane.org/gmane.comp.version-control.git/120733 http://thread.gmane.org/gmane.comp.version-control.git/120724 https://www.redhat.com/archives/fedora-security-list/2009-June/msg00000.html http://www.openwall.com/lists/oss-security/2009/06/12/1 http://osvdb.org/55034 http://www.securitytracker.com/id?1022398 http://secunia.com/advisories/35437 http://secunia.com/advisories/35730 http://www.vupen.com/english/advisories/2009/1579 XForce ISS Database: gitdaemon-xinetd-dos(51083) https://exchange.xforce.ibmcloud.com/vulnerabilities/51083
Copyright	Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.