SuSE 10 安全性更新:xine (ZYPP 修補程式編號 5965)
critical Nessus Plugin ID 51768
語系:
概要
遠端 SuSE 10 主機缺少安全性相關修補程式。說明
此 xine 更新可在剖析檔案時修正多個緩衝區溢位:- CVE-2008-3231
- CVE-2008-5233
- CVE-2008-5234
- CVE-2008-5235
- CVE-2008-5236
- CVE-2008-5237
- CVE-2008-5238
- CVE-2008-5239
- CVE-2008-5240
- CVE-2008-5241
- CVE-2008-5242
- CVE-2008-5243
- CVE-2008-5244
- CVE-2008-5245
- CVE-2008-5246
- CVE-2008-5247
- 這些錯誤可以導致遠端程式碼執行。
(CVE-2008-5248)
解決方案
套用 ZYPP 修補程式編號 5965。另請參閱
http://support.novell.com/security/cve/CVE-2008-3231.html
http://support.novell.com/security/cve/CVE-2008-5233.html
http://support.novell.com/security/cve/CVE-2008-5234.html
http://support.novell.com/security/cve/CVE-2008-5235.html
http://support.novell.com/security/cve/CVE-2008-5236.html
http://support.novell.com/security/cve/CVE-2008-5237.html
http://support.novell.com/security/cve/CVE-2008-5238.html
http://support.novell.com/security/cve/CVE-2008-5239.html
http://support.novell.com/security/cve/CVE-2008-5240.html
http://support.novell.com/security/cve/CVE-2008-5241.html
http://support.novell.com/security/cve/CVE-2008-5242.html
http://support.novell.com/security/cve/CVE-2008-5243.html
http://support.novell.com/security/cve/CVE-2008-5244.html
http://support.novell.com/security/cve/CVE-2008-5245.html
http://support.novell.com/security/cve/CVE-2008-5246.html
Plugin 詳細資訊
嚴重性: Critical
ID: 51768
檔案名稱: suse_xine-devel-5965.nasl
版本: 1.7
類型: local
代理程式: unix
已發布: 2011/1/27
已更新: 2021/1/14
支援的感應器: Nessus Agent, Nessus
風險資訊
VPR
風險因素: Medium
分數: 5.9
CVSS v2
風險因素: Critical
基本分數: 10
媒介: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
弱點資訊
CPE: cpe:/o:suse:suse_linux
必要的 KB 項目: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
修補程式發佈日期: 2009/1/28
參考資訊
CVE: CVE-2008-3231, CVE-2008-5233, CVE-2008-5234, CVE-2008-5235, CVE-2008-5236, CVE-2008-5237, CVE-2008-5238, CVE-2008-5239, CVE-2008-5240, CVE-2008-5241, CVE-2008-5242, CVE-2008-5243, CVE-2008-5244, CVE-2008-5245, CVE-2008-5246, CVE-2008-5247, CVE-2008-5248