Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.703158
Kategorie:Debian Local Security Checks
Titel:Debian Security Advisory DSA 3158-1 (unrtf - security update)
Zusammenfassung:Michal Zalewski and Hanno Boeck;discovered several vulnerabilities in unrtf, a RTF to other formats converter,;leading to a denial of service (application crash) or, potentially, the execution;of arbitrary code.
Beschreibung:Summary:
Michal Zalewski and Hanno Boeck
discovered several vulnerabilities in unrtf, a RTF to other formats converter,
leading to a denial of service (application crash) or, potentially, the execution
of arbitrary code.

Affected Software/OS:
unrtf on Debian Linux

Solution:
For the stable distribution (wheezy),
these problems have been fixed in version 0.21.5-3~
deb7u1. This update is based
on a new upstream version of unrtf including additional bug fixes, new features
and incompatible changes (especially PostScript support is dropped).

For the upcoming stable distribution (jessie) and the unstable
distribution (sid), these problems have been fixed in version 0.21.5-2.

We recommend that you upgrade your unrtf packages.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2014-9274
BugTraq ID: 71430
http://www.securityfocus.com/bid/71430
Debian Security Information: DSA-3158 (Google Search)
http://www.debian.org/security/2015/dsa-3158
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147399.html
https://security.gentoo.org/glsa/201507-06
http://www.mandriva.com/security/advisories?name=MDVSA-2015:007
https://lists.gnu.org/archive/html/bug-unrtf/2014-11/msg00001.html
http://www.openwall.com/lists/oss-security/2014/12/04/15
http://secunia.com/advisories/62811
Common Vulnerability Exposure (CVE) ID: CVE-2014-9275
BugTraq ID: 71506
http://www.securityfocus.com/bid/71506
http://www.openwall.com/lists/oss-security/2014/12/03/4
CopyrightCopyright (c) 2015 Greenbone Networks GmbH http://greenbone.net

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.