Mandrake Local Security Checks : Mandrake Security Advisory MDVSA-2009:081 (libsoup)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.63714

Categoría: Mandrake Local Security Checks

Título: Mandrake Security Advisory MDVSA-2009:081 (libsoup)

Resumen: The remote host is missing an update to libsoup;announced via advisory MDVSA-2009:081.

Descripción: Summary:
The remote host is missing an update to libsoup
announced via advisory MDVSA-2009:081.

Vulnerability Insight:
An integer overflow in libsoup Base64 encoding and decoding functions
enables attackers either to cause denial of service and to execute
arbitrary code (CVE-2009-0585).

This update provides the fix for that security issue.

Affected: 2008.0, Corporate 3.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-0585
20090312 [oCERT-2008-015] glib and glib-predecessor heap overflows
http://www.securityfocus.com/archive/1/501712/100/0/threaded
34100
http://www.securityfocus.com/bid/34100
34310
http://secunia.com/advisories/34310
34337
http://secunia.com/advisories/34337
34401
http://secunia.com/advisories/34401
35065
http://secunia.com/advisories/35065
DSA-1748
http://www.debian.org/security/2009/dsa-1748
MDVSA-2009:081
http://www.mandriva.com/security/advisories?name=MDVSA-2009:081
RHSA-2009:0344
http://www.redhat.com/support/errata/RHSA-2009-0344.html
SUSE-SR:2009:010
http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.html
USN-737-1
http://www.ubuntu.com/usn/USN-737-1
[oss-security] 20090312 [oCERT-2008-015] glib and glib-predecessor heap overflows
http://openwall.com/lists/oss-security/2009/03/12/2
http://ocert.org/patches/2008-015/libsoup-CVE-2009-0585.diff
http://support.avaya.com/elmodocs2/security/ASA-2009-088.htm
http://www.ocert.org/advisories/ocert-2008-015.html
libsoup-soupmisc-bo(49273)
https://exchange.xforce.ibmcloud.com/vulnerabilities/49273
oval:org.mitre.oval:def:9599
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9599

Copyright Copyright (C) 2009 E-Soft Inc.

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.63714
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDVSA-2009:081 (libsoup)
Resumen:	The remote host is missing an update to libsoup;announced via advisory MDVSA-2009:081.
Descripción:	Summary: The remote host is missing an update to libsoup announced via advisory MDVSA-2009:081. Vulnerability Insight: An integer overflow in libsoup Base64 encoding and decoding functions enables attackers either to cause denial of service and to execute arbitrary code (CVE-2009-0585). This update provides the fix for that security issue. Affected: 2008.0, Corporate 3.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0585 20090312 [oCERT-2008-015] glib and glib-predecessor heap overflows http://www.securityfocus.com/archive/1/501712/100/0/threaded 34100 http://www.securityfocus.com/bid/34100 34310 http://secunia.com/advisories/34310 34337 http://secunia.com/advisories/34337 34401 http://secunia.com/advisories/34401 35065 http://secunia.com/advisories/35065 DSA-1748 http://www.debian.org/security/2009/dsa-1748 MDVSA-2009:081 http://www.mandriva.com/security/advisories?name=MDVSA-2009:081 RHSA-2009:0344 http://www.redhat.com/support/errata/RHSA-2009-0344.html SUSE-SR:2009:010 http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.html USN-737-1 http://www.ubuntu.com/usn/USN-737-1 [oss-security] 20090312 [oCERT-2008-015] glib and glib-predecessor heap overflows http://openwall.com/lists/oss-security/2009/03/12/2 http://ocert.org/patches/2008-015/libsoup-CVE-2009-0585.diff http://support.avaya.com/elmodocs2/security/ASA-2009-088.htm http://www.ocert.org/advisories/ocert-2008-015.html libsoup-soupmisc-bo(49273) https://exchange.xforce.ibmcloud.com/vulnerabilities/49273 oval:org.mitre.oval:def:9599 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9599
Copyright	Copyright (C) 2009 E-Soft Inc.