Test ID:	1.3.6.1.4.1.25623.1.0.121232
Category:	Gentoo Local Security Checks
Title:	Gentoo Security Advisory GLSA 201406-29
Summary:	Gentoo Linux Local Security Checks GLSA 201406-29
Description:	Summary: Gentoo Linux Local Security Checks GLSA 201406-29 Vulnerability Insight: spice-gtk does not properly sanitize the DBUS_SYSTEM_BUS_ADDRESS environment variable. Solution: Update the affected packages to the latest available version. CVSS Score: 6.9 CVSS Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2012-4425 21323 http://www.exploit-db.com/exploits/21323 55555 http://www.securityfocus.com/bid/55555 RHSA-2012:1284 http://rhn.redhat.com/errata/RHSA-2012-1284.html [oss-security] 20120912 libdbus CVE-2012-3524 fix http://www.openwall.com/lists/oss-security/2012/09/12/6 [oss-security] 20120914 Re: libdbus CVE-2012-3524 fix http://www.openwall.com/lists/oss-security/2012/09/14/2 [oss-security] 20120917 Re: libdbus CVE-2012-3524 fix http://www.openwall.com/lists/oss-security/2012/09/17/2 [scm-commits] 20120914 [spice-gtk/f18] Add patch fixing CVE 2012-4425 http://permalink.gmane.org/gmane.linux.redhat.fedora.extras.cvs/853051 [spice-devel] 20120914 [spice-gtk] usb-acl-helper: Clear environment http://www.spinics.net/lists/spice-devel/msg01940.html https://bugzilla.redhat.com/show_bug.cgi?id=857283
Copyright	Copyright (C) 2015 Eero Volotinen

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.