 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.59891 |
| Category: | Fedora Local Security Checks |
| Title: | Fedora Core 8 FEDORA-2007-3798 (blam) |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host is missing an update to blam announced via advisory FEDORA-2007-3798. Blam is a tool that helps you keep track of the growing number of news feeds distributed as RSS. Blam lets you subscribe to any number of feeds and provides an easy to use and clean interface to stay up to date Update Information: This update resolves a low severity security issue where LD_LIBRARY_PATH could potentially get set to the current directory if it wasn't set before Blam was launched. ChangeLog: * Thu Nov 22 2007 Peter Gordon - 1.8.3-11 - Fix CVE-2005-4790 (bug 252294). * Tue Nov 13 2007 Peter Gordon - 1.8.3-10 - Rebuild for new Gecko (Firefox 2.0.0.9). References: [ 1 ] Bug #395761 - CVE-2005-4790 tomboy includes CWD in LD_LIBRARY_PATH [f8] https://bugzilla.redhat.com/show_bug.cgi?id=395761 Updated packages: 8c2691d5d608dfe4ebe49d19c5648e98f796e799 blam-debuginfo-1.8.3-11.fc8.i386.rpm 2aa1c2490235906853b3b33dbc8b307cbf7c5a7e blam-1.8.3-11.fc8.i386.rpm affe4814232cf9abaf7b9222cf1eb6a4fa4a0f3c blam-debuginfo-1.8.3-11.fc8.x86_64.rpm ed5e6144b7719e3b2d5f1d70f26bdbe4b298d490 blam-1.8.3-11.fc8.x86_64.rpm d0967a8905fb3aaa46f3ba302bec787eae2446f8 blam-1.8.3-11.fc8.ppc.rpm d52414a5eabf5d02af9109f3191d215ca57cfb25 blam-debuginfo-1.8.3-11.fc8.ppc.rpm 17ceb85f572cec39fe2df132d4c92bb83de8a951 blam-1.8.3-11.fc8.src.rpm This update can be installed with the yum update program. Use su -c 'yum update blam' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. _______________________________________________ Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce Solution: Apply the appropriate updates. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2007-3798 Risk factor : High CVSS Score: 6.9 |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2005-4790 BugTraq ID: 25341 http://www.securityfocus.com/bid/25341 https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00206.html https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00913.html http://security.gentoo.org/glsa/glsa-200711-12.xml http://security.gentoo.org/glsa/glsa-200801-14.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:064 http://bugs.gentoo.org/show_bug.cgi?id=188806 http://osvdb.org/39577 http://osvdb.org/39578 http://secunia.com/advisories/26480 http://secunia.com/advisories/27608 http://secunia.com/advisories/27621 http://secunia.com/advisories/27799 http://secunia.com/advisories/28339 http://secunia.com/advisories/28672 SuSE Security Announcement: SUSE-SR:2005:022 (Google Search) http://www.novell.com/linux/security/advisories/2005_22_sr.html https://usn.ubuntu.com/560-1/ XForce ISS Database: tomboy-ldlibrarypath-privilege-escalation(36054) https://exchange.xforce.ibmcloud.com/vulnerabilities/36054 |
| Copyright | Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |