FrSIRT - Fedora Security Update Fixes FLAC Integer Overflow Vulnerabilities / Exploit

French Security Incident Response Team

Français

English

Fedora Security Update Fixes FLAC Integer Overflow Vulnerabilities

Date de Publication : 2007-11-02 © FrSIRT.COM
Titre : Fedora Security Update Fixes FLAC Integer Overflow Vulnerabilities
Identifiant : FrSIRT/AVIS-2007-3689
CVE ID : CVE-2007-4619
Risque : Modéré (2/4) -

Exploitable à distance : Oui
Exploitable en local : Oui

En savoir plus

Description

Produits affectés

Solution

Références

Description Technique

Plusieurs vulnérabilités ont été identifiées dans Fedora, elles pourraient être exploitées par des attaquants afin de causer un déni de service ou compromettre un système vulnérable [...]

Solution

Installer les mises à jour :

1800a3d469a26429b8544b984c23b8ca248c31ae flac-devel-1.2.1-1.fc7.ppc64.rpm
5896fa90cd42c2dc43ea35e6f673aca1be1624cb flac-1.2.1-1.fc7.ppc64.rpm
b26e20b8c0c71d78b012846dc5336016ba38ca7c flac-debuginfo-1.2.1-1.fc7.ppc64.rpm
c0f835fe0e5f2ee03f6f060b7ac95960d2f75c28 flac-1.2.1-1.fc7.i386.rpm
04bd266ea646162c1580c05018e9bc3a6392215c flac-debuginfo-1.2.1-1.fc7.i386.rpm
22825f84f37cc5042039319b22c47ea54f702ab7 flac-devel-1.2.1-1.fc7.i386.rpm
d007df3ca121de6ab406896ee98c0d084751d1ca flac-1.2.1-1.fc7.x86_64.rpm
574da7eda042159ae6a018c965c0a501d3670b5b flac-devel-1.2.1-1.fc7.x86_64.rpm
26095ff1e3a1162c912b1b3706b5d05a505dd566 flac-debuginfo-1.2.1-1.fc7.x86_64.rpm
7631a3cd7b4c7220fc00fa1f5dcffc231f5ddafc flac-1.2.1-1.fc7.ppc.rpm
59a2e3a478a736267fbd4577086d38576d289519 flac-debuginfo-1.2.1-1.fc7.ppc.rpm
634fe5756f1d9829a8c7500ddf1d04e0c706b9ce flac-devel-1.2.1-1.fc7.ppc.rpm
4fea3873d077f557b66dc9a7ff091f53e393e6ff flac-1.2.1-1.fc7.src.rpm

Historique

2007-11-02 : Version Initiale

Recevez les bulletins FrSIRT

Le service FrSIRT VNS permet aux professionnels de la sécurité (RSSI, DSI, administrateurs et consultants) de recevoir en temps-réel, par email, SMS et flux RSS/XML, des bulletins de vulnérabilités complets, détaillés et personnalisés.

Recherche

Newsletter

	Oracle Products Multiple Code Execution Vulnerabilities
	Oracle Products Command Execution and SQL Injection Vulnerabilities
	Oracle Products Multiple Code Execution and SQL Injection Vulnerabilities
	Oracle Database "PITRIG_DROPMETADATA" Buffer Overflow Vulnerability
	Oracle Products Multiple Code Execution and SQL Injection Vulnerabilities
	Oracle JInitiator ActiveX Control Multiple Remote Buffer Overflow Vulnerabilities
	Oracle Products Multiple Remote Command Execution and SQL Injection Vulnerabilities

	Microsoft Office Word Document Handling Code Execution Vulnerability
	Microsoft SQL Server Privilege Escalation Vulnerabilities (MS08-040)
	Microsoft Exchange Server Cross Site Scripting Issues (MS08-039)
	Microsoft Windows Explorer Remote Code Execution (MS08-038)
	Microsoft Windows Multiple DNS Spoofing Vulnerabilities (MS08-037)
	Microsoft Access Snapshot Viewer ActiveX Control Vulnerability
	Microsoft Internet Explorer Frame Cross-Domain Scripting Vulnerability

	Cisco Products Remote DNS Cache Poisoning Vulnerability
	Cisco Wide Area Application Services CUPS Remote Vulnerability
	Cisco UCM Denial of Service and Authentication Bypass Vulnerabilities
	Cisco Intrusion Prevention System Jumbo Frame Vulnerability
	Cisco VPN Client Deterministic Network Enhancer Privilege Escalation
	Cisco Products SNMPv3 Authentication Packets Vulnerabilities
	Cisco PIX and ASA Security Bypass and Denial of Service