Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2019-0262)

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.1.10.2019.0262
Category:	Mageia Linux Local Security Checks
Title:	Mageia: Security Advisory (MGASA-2019-0262)
Summary:	The remote host is missing an update for the 'znc' package(s) announced via the MGASA-2019-0262 advisory.
Description:	Summary: The remote host is missing an update for the 'znc' package(s) announced via the MGASA-2019-0262 advisory. Vulnerability Insight: Jeriko One discovered two vulnerabilities in the ZNC IRC bouncer which could result in privilege escalation or denial of service (CVE-2018-14055, CVE-2018-14056). Two vulnerabilities were discovered in the ZNC IRC bouncer which could result in remote code execution (CVE-2019-12816) or denial of service via invalid encoding (CVE-2019-9917). Affected Software/OS: 'znc' package(s) on Mageia 6, Mageia 7. Solution: Please install the updated package(s). CVSS Score: 6.5 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2018-14055 Debian Security Information: DSA-4252 (Google Search) https://www.debian.org/security/2018/dsa-4252 https://security.gentoo.org/glsa/201807-03 https://github.com/znc/znc/commit/a7bfbd93812950b7444841431e8e297e62cb524e https://github.com/znc/znc/commit/d22fef8620cdd87490754f607e7153979731c69d Common Vulnerability Exposure (CVE) ID: CVE-2018-14056 https://github.com/znc/znc/commit/a4a5aeeb17d32937d8c7d743dae9a4cc755ce773 Common Vulnerability Exposure (CVE) ID: CVE-2019-12816 Bugtraq: 20190617 [SECURITY] [DSA 4463-1] znc security update (Google Search) https://seclists.org/bugtraq/2019/Jun/23 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4O24TQOB73X57GACLZVMRVUK4UKHLE5G/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NHR6OD52FQAG5ZPZ42NJM2T765C3V2XC/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TEESIGRNFLZUWXZPDGXAZ7JZTHYBDJ7G/ https://security.gentoo.org/glsa/201908-15 https://lists.debian.org/debian-lts-announce/2019/06/msg00017.html SuSE Security Announcement: openSUSE-SU-2019:1775 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00037.html SuSE Security Announcement: openSUSE-SU-2019:1859 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00018.html https://usn.ubuntu.com/4044-1/ Common Vulnerability Exposure (CVE) ID: CVE-2019-9917 Debian Security Information: DSA-4463 (Google Search) https://www.debian.org/security/2019/dsa-4463 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WRHCMHI44AW5CJ22WV676BKFUWWCLA7T/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7WTRBTPL7WWKQ7DZ2ALDTCGYUWSE6SL3/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZRVSINQHM623GJYYNDSBYSXT2MHKFCYQ/ https://github.com/znc/znc/commit/64613bc8b6b4adf1e32231f9844d99cd512b8973 https://usn.ubuntu.com/3950-1/
Copyright	Copyright (C) 2022 Greenbone AG