Slackware Local Security Checks : Slackware: Security Advisory (SSA:2010-240-01)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.68176

Categoría: Slackware Local Security Checks

Título: Slackware: Security Advisory (SSA:2010-240-01)

Resumen: The remote host is missing an update for the 'gnupg2' package(s) announced via the SSA:2010-240-01 advisory.

Descripción: Summary:
The remote host is missing an update for the 'gnupg2' package(s) announced via the SSA:2010-240-01 advisory.

Vulnerability Insight:
New gnupg2 packages are available for Slackware 12.0, 12.1, 12.2, 13.0, 13.1,
and -current to fix a security issue.

Here are the details from the Slackware 13.1 ChangeLog:
+--------------------------+
patches/packages/gnupg2-2.0.14-i486-3_slack13.1.txz: Rebuilt.
Patched to fix 'Realloc Bug with X.509 certificates in GnuPG'.
For more information, see:
[link moved to references]
(* Security fix *)
+--------------------------+

Affected Software/OS:
'gnupg2' package(s) on Slackware 12.0, Slackware 12.1, Slackware 12.2, Slackware 13.0, Slackware 13.1, Slackware current.

Solution:
Please install the updated package(s).

CVSS Score:
5.1

CVSS Vector:
AV:N/AC:H/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-2547
1024247
http://www.securitytracker.com/id?1024247
38877
http://secunia.com/advisories/38877
40718
http://secunia.com/advisories/40718
40841
http://secunia.com/advisories/40841
41945
http://www.securityfocus.com/bid/41945
ADV-2010-1931
http://www.vupen.com/english/advisories/2010/1931
ADV-2010-1950
http://www.vupen.com/english/advisories/2010/1950
ADV-2010-1988
http://www.vupen.com/english/advisories/2010/1988
ADV-2010-2217
http://www.vupen.com/english/advisories/2010/2217
ADV-2010-3125
http://www.vupen.com/english/advisories/2010/3125
DSA-2076
http://www.debian.org/security/2010/dsa-2076
FEDORA-2010-11413
http://lists.fedoraproject.org/pipermail/package-announce/2010-August/044935.html
MDVSA-2010:143
http://www.mandriva.com/security/advisories?name=MDVSA-2010:143
SSA:2010-240-01
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.462008
SUSE-SR:2010:020
http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00001.html
[gnupg-announce] 20100723 [Announce] Security Alert for GnuPG 2.0 - Realloc bug in GPGSM
http://lists.gnupg.org/pipermail/gnupg-announce/2010q3/000302.html
http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0076
https://issues.rpath.com/browse/RPL-3229

Copyright Copyright (C) 2012 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.68176
Categoría:	Slackware Local Security Checks
Título:	Slackware: Security Advisory (SSA:2010-240-01)
Resumen:	The remote host is missing an update for the 'gnupg2' package(s) announced via the SSA:2010-240-01 advisory.
Descripción:	Summary: The remote host is missing an update for the 'gnupg2' package(s) announced via the SSA:2010-240-01 advisory. Vulnerability Insight: New gnupg2 packages are available for Slackware 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix a security issue. Here are the details from the Slackware 13.1 ChangeLog: +--------------------------+ patches/packages/gnupg2-2.0.14-i486-3_slack13.1.txz: Rebuilt. Patched to fix 'Realloc Bug with X.509 certificates in GnuPG'. For more information, see: [link moved to references] (* Security fix *) +--------------------------+ Affected Software/OS: 'gnupg2' package(s) on Slackware 12.0, Slackware 12.1, Slackware 12.2, Slackware 13.0, Slackware 13.1, Slackware current. Solution: Please install the updated package(s). CVSS Score: 5.1 CVSS Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-2547 1024247 http://www.securitytracker.com/id?1024247 38877 http://secunia.com/advisories/38877 40718 http://secunia.com/advisories/40718 40841 http://secunia.com/advisories/40841 41945 http://www.securityfocus.com/bid/41945 ADV-2010-1931 http://www.vupen.com/english/advisories/2010/1931 ADV-2010-1950 http://www.vupen.com/english/advisories/2010/1950 ADV-2010-1988 http://www.vupen.com/english/advisories/2010/1988 ADV-2010-2217 http://www.vupen.com/english/advisories/2010/2217 ADV-2010-3125 http://www.vupen.com/english/advisories/2010/3125 DSA-2076 http://www.debian.org/security/2010/dsa-2076 FEDORA-2010-11413 http://lists.fedoraproject.org/pipermail/package-announce/2010-August/044935.html MDVSA-2010:143 http://www.mandriva.com/security/advisories?name=MDVSA-2010:143 SSA:2010-240-01 http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.462008 SUSE-SR:2010:020 http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00001.html [gnupg-announce] 20100723 [Announce] Security Alert for GnuPG 2.0 - Realloc bug in GPGSM http://lists.gnupg.org/pipermail/gnupg-announce/2010q3/000302.html http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0076 https://issues.rpath.com/browse/RPL-3229
Copyright	Copyright (C) 2012 Greenbone AG