Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.842766
Kategorie:Ubuntu Local Security Checks
Titel:Ubuntu Update for libksba USN-2982-1
Zusammenfassung:The remote host is missing an update for the 'libksba'; package(s) announced via the referenced advisory.
Beschreibung:Summary:
The remote host is missing an update for the 'libksba'
package(s) announced via the referenced advisory.

Vulnerability Insight:
Hanno Bö ck discovered that Libksba
incorrectly handled decoding certain BER data. An attacker could use this issue
to cause Libksba to crash, resulting in a denial of service. This issue only
applied to Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. (CVE-2016-4353)

Hanno Bö ck discovered that Libksba incorrectly handled decoding certain BER
data. An attacker could use this issue to cause Libksba to crash, resulting
in a denial of service, or possibly execute arbitrary code. This issue only
applied to Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. (CVE-2016-4354,
CVE-2016-4355)

Hanno Bö ck discovered that Libksba incorrectly handled incorrect utf-8
strings when decoding certain DN data. An attacker could use this issue to
cause Libksba to crash, resulting in a denial of service, or possibly
execute arbitrary code. This issue only applied to Ubuntu 12.04 LTS and
Ubuntu 14.04 LTS. (CVE-2016-4356)

Pascal Cuoq discovered that Libksba incorrectly handled incorrect utf-8
strings when decoding certain DN data. An attacker could use this issue to
cause Libksba to crash, resulting in a denial of service, or possibly
execute arbitrary code. (CVE-2016-4574)

Pascal Cuoq discovered that Libksba incorrectly handled decoding certain
data. An attacker could use this issue to cause Libksba to crash, resulting
in a denial of service. (CVE-2016-4579)

Affected Software/OS:
libksba on Ubuntu 16.04 LTS,
Ubuntu 15.10,
Ubuntu 14.04 LTS,
Ubuntu 12.04 LTS

Solution:
Please Install the Updated Packages.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2016-4353
https://security.gentoo.org/glsa/201604-04
http://www.openwall.com/lists/oss-security/2016/04/29/5
http://www.openwall.com/lists/oss-security/2016/04/29/8
http://www.ubuntu.com/usn/USN-2982-1
Common Vulnerability Exposure (CVE) ID: CVE-2016-4354
Common Vulnerability Exposure (CVE) ID: CVE-2016-4355
Common Vulnerability Exposure (CVE) ID: CVE-2016-4356
http://www.openwall.com/lists/oss-security/2016/05/10/3
Common Vulnerability Exposure (CVE) ID: CVE-2016-4574
http://www.openwall.com/lists/oss-security/2016/05/10/4
SuSE Security Announcement: openSUSE-SU-2016:1370 (Google Search)
http://lists.opensuse.org/opensuse-updates/2016-05/msg00087.html
SuSE Security Announcement: openSUSE-SU-2016:1525 (Google Search)
http://lists.opensuse.org/opensuse-updates/2016-06/msg00028.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-4579
https://security.gentoo.org/glsa/201706-22
http://www.openwall.com/lists/oss-security/2016/05/10/8
http://www.openwall.com/lists/oss-security/2016/05/11/10
CopyrightCopyright (C) 2016 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.