ID de Prueba:	1.3.6.1.4.1.25623.1.1.12.2024.6718.2
Categoría:	Ubuntu Local Security Checks
Título:	Ubuntu: Security Advisory (USN-6718-2)
Resumen:	The remote host is missing an update for the 'curl' package(s) announced via the USN-6718-2 advisory.
Descripción:	Summary: The remote host is missing an update for the 'curl' package(s) announced via the USN-6718-2 advisory. Vulnerability Insight: USN-6718-1 fixed a vulnerability in curl. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: It was discovered that curl incorrectly handled memory when limiting the amount of headers when HTTP/2 server push is allowed. A remote attacker could possibly use this issue to cause curl to consume resources, leading to a denial of service. (CVE-2024-2398) Affected Software/OS: 'curl' package(s) on Ubuntu 16.04, Ubuntu 18.04. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2024-2398 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2D44YLAUFJU6BZ4XFG2FYV7SBKXB5IZ6/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GMD6UYKCCRCYETWQZUJ65ZRFULT6SHLI/ issue https://hackerone.com/reports/2402845 json https://curl.se/docs/CVE-2024-2398.json www https://curl.se/docs/CVE-2024-2398.html http://www.openwall.com/lists/oss-security/2024/03/27/3
Copyright	Copyright (C) 2024 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.