Test ID:	1.3.6.1.4.1.25623.1.0.58197
Category:	Slackware Local Security Checks
Title:	Slackware: Security Advisory (SSA:2007-093-03)
Summary:	The remote host is missing an update for the 'qt' package(s) announced via the SSA:2007-093-03 advisory.
Description:	Summary: The remote host is missing an update for the 'qt' package(s) announced via the SSA:2007-093-03 advisory. Vulnerability Insight: New qt packages are available for Slackware 10.2, 11.0, and -current to fix a security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database: [link moved to references] Here are the details from the Slackware 11.0 ChangeLog: +--------------------------+ patches/packages/qt-3.3.8-i486-1_slack11.0.tgz: Patched an issue where the Qt UTF 8 decoder may in some instances fail to reject overlong sequences, possibly allowing '/../' path injection or XSS errors. For more information, see: [link moved to references] (* Security fix *) +--------------------------+ Affected Software/OS: 'qt' package(s) on Slackware 10.2, Slackware 11.0, Slackware current. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2007-0242 BugTraq ID: 23269 http://www.securityfocus.com/bid/23269 Debian Security Information: DSA-1292 (Google Search) http://www.debian.org/security/2007/dsa-1292 http://fedoranews.org/updates/FEDORA-2007-703.shtml http://www.mandriva.com/security/advisories?name=MDKSA-2007:074 http://www.mandriva.com/security/advisories?name=MDKSA-2007:075 http://www.mandriva.com/security/advisories?name=MDKSA-2007:076 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11510 http://www.redhat.com/support/errata/RHSA-2007-0883.html http://www.redhat.com/support/errata/RHSA-2007-0909.html RedHat Security Advisories: RHSA-2011:1324 http://rhn.redhat.com/errata/RHSA-2011-1324.html http://secunia.com/advisories/24699 http://secunia.com/advisories/24705 http://secunia.com/advisories/24726 http://secunia.com/advisories/24727 http://secunia.com/advisories/24759 http://secunia.com/advisories/24797 http://secunia.com/advisories/24847 http://secunia.com/advisories/24889 http://secunia.com/advisories/25263 http://secunia.com/advisories/26804 http://secunia.com/advisories/26857 http://secunia.com/advisories/27108 http://secunia.com/advisories/27275 http://secunia.com/advisories/46117 SGI Security Advisory: 20070901-01-P ftp://patches.sgi.com/support/free/security/advisories/20070901-01-P.asc http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.348591 SuSE Security Announcement: SUSE-SR:2007:006 (Google Search) http://www.novell.com/linux/security/advisories/2007_6_sr.html http://www.ubuntu.com/usn/usn-452-1 http://www.vupen.com/english/advisories/2007/1212 XForce ISS Database: qt-utf8-xss(33397) https://exchange.xforce.ibmcloud.com/vulnerabilities/33397
Copyright	Copyright (C) 2012 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.