Mandrake Local Security Checks : Mandrake Security Advisory MDVSA-2009:255 (perl-DBD-Pg)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.64998

Categoría: Mandrake Local Security Checks

Título: Mandrake Security Advisory MDVSA-2009:255 (perl-DBD-Pg)

Resumen: The remote host is missing an update to perl-DBD-Pg;announced via advisory MDVSA-2009:255.

Descripción: Summary:
The remote host is missing an update to perl-DBD-Pg
announced via advisory MDVSA-2009:255.

Vulnerability Insight:
A vulnerability was discovered and corrected in perl-DBD-Pg:

Heap-based buffer overflow in the DBD::Pg module for Perl might allow
context-dependent attackers to execute arbitrary code via unspecified
input to an application that uses the getline and pg_getline functions
to read database rows.

This update provides a fix for this vulnerability.

Affected: Corporate 4.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-0663
BugTraq ID: 34755
http://www.securityfocus.com/bid/34755
Debian Security Information: DSA-1780 (Google Search)
http://www.debian.org/security/2009/dsa-1780
https://launchpad.net/bugs/cve/2009-0663
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9499
http://www.redhat.com/support/errata/RHSA-2009-0479.html
http://www.redhat.com/support/errata/RHSA-2009-1067.html
http://secunia.com/advisories/34909
http://secunia.com/advisories/35058
http://secunia.com/advisories/35685
SuSE Security Announcement: SUSE-SR:2009:012 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html
XForce ISS Database: libdbdpgperl-unspecified-bo(50467)
https://exchange.xforce.ibmcloud.com/vulnerabilities/50467

Copyright Copyright (C) 2009 E-Soft Inc.

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.64998
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDVSA-2009:255 (perl-DBD-Pg)
Resumen:	The remote host is missing an update to perl-DBD-Pg;announced via advisory MDVSA-2009:255.
Descripción:	Summary: The remote host is missing an update to perl-DBD-Pg announced via advisory MDVSA-2009:255. Vulnerability Insight: A vulnerability was discovered and corrected in perl-DBD-Pg: Heap-based buffer overflow in the DBD::Pg module for Perl might allow context-dependent attackers to execute arbitrary code via unspecified input to an application that uses the getline and pg_getline functions to read database rows. This update provides a fix for this vulnerability. Affected: Corporate 4.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0663 BugTraq ID: 34755 http://www.securityfocus.com/bid/34755 Debian Security Information: DSA-1780 (Google Search) http://www.debian.org/security/2009/dsa-1780 https://launchpad.net/bugs/cve/2009-0663 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9499 http://www.redhat.com/support/errata/RHSA-2009-0479.html http://www.redhat.com/support/errata/RHSA-2009-1067.html http://secunia.com/advisories/34909 http://secunia.com/advisories/35058 http://secunia.com/advisories/35685 SuSE Security Announcement: SUSE-SR:2009:012 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html XForce ISS Database: libdbdpgperl-unspecified-bo(50467) https://exchange.xforce.ibmcloud.com/vulnerabilities/50467
Copyright	Copyright (C) 2009 E-Soft Inc.