Gentoo Local Security Checks : Gentoo Security Advisory GLSA 201209-21 (fastjar)

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.72455
Category:	Gentoo Local Security Checks
Title:	Gentoo Security Advisory GLSA 201209-21 (fastjar)
Summary:	The remote host is missing updates announced in;advisory GLSA 201209-21.
Description:	Summary: The remote host is missing updates announced in advisory GLSA 201209-21. Vulnerability Insight: Two directory traversal vulnerabilities have been found in fastjar, allowing remote attackers to create or overwrite arbitrary files. Solution: All fastjar users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-arch/fastjar-0.98-r1' CVSS Score: 5.8 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0831 BugTraq ID: 41006 http://www.securityfocus.com/bid/41006 http://security.gentoo.org/glsa/glsa-201209-21.xml http://www.mandriva.com/security/advisories?name=MDVSA-2010:122 http://marc.info/?l=oss-security&m=127602731712034&w=2 http://marc.info/?l=oss-security&m=127603032617644&w=2 http://marc.info/?l=oss-security&m=127602564508766&w=2 http://www.osvdb.org/65467 http://www.redhat.com/support/errata/RHSA-2011-0025.html http://secunia.com/advisories/42892 http://secunia.com/advisories/50786 http://www.vupen.com/english/advisories/2010/1553 http://www.vupen.com/english/advisories/2011/0121 Common Vulnerability Exposure (CVE) ID: CVE-2010-2322 BugTraq ID: 41009 http://www.securityfocus.com/bid/41009
Copyright	Copyright (C) 2012 E-Soft Inc.