FrSIRT - Fedora Security Update Fixes Glib PCRE Multiple Code Execution Issues / Exploit

French Security Incident Response Team

Français

English

Fedora Security Update Fixes Glib PCRE Multiple Code Execution Issues

Date de Publication : 2007-11-08 © FrSIRT.COM
Titre : Fedora Security Update Fixes Glib PCRE Multiple Code Execution Issues
Identifiant : FrSIRT/AVIS-2007-3791
CVE ID : CVE-2007-1659 - CVE-2007-1660 - CVE-2007-1661 - CVE-2007-1662 - CVE-2007-4766 - CVE-2007-4767 - CVE-2007-4768
Risque : Modéré (2/4) -

Exploitable à distance : Oui
Exploitable en local : Oui

En savoir plus

Description

Produits affectés

Solution

Références

Description Technique

Plusieurs vulnérabilités ont été identifiées dans Fedora, elles pourraient être exploitées par des attaquants afin de causer un déni de service ou compromettre un système vulnérable [...]

Solution

Installer les mises à jour :

613304024548a158013a55d0f21688d52a6f8919 glib2-2.14.3-1.fc8.ppc64.rpm
62f68f73f81ec5898f047451b1df75693c9a0566 glib2-debuginfo-2.14.3-1.fc8.ppc64.rpm
de60d430a57b47019803b2c70688ed1852abb166 glib2-static-2.14.3-1.fc8.ppc64.rpm
5be16bd4521866b01df7f8ff86ccff2e1ae234e0 glib2-devel-2.14.3-1.fc8.ppc64.rpm
32f5ebdaa6df8ba9dc3198b50d3bbcd77c011215 glib2-debuginfo-2.14.3-1.fc8.i386.rpm
398e50a26d333c91ddbecc7684de2caa17eff805 glib2-2.14.3-1.fc8.i386.rpm
d03214f6d495f540ca4898ffc331e09d08878fce glib2-devel-2.14.3-1.fc8.i386.rpm
1577c9f080d543aec65bff8aa1f02f9f19c60f24 glib2-static-2.14.3-1.fc8.i386.rpm
fff31cdcb112a7c3230bbe79f7fe8dd53980675a glib2-2.14.3-1.fc8.x86_64.rpm
0a4ebf7d8ba8e7cb9bef2e199f66a1fae47e1ac8 glib2-devel-2.14.3-1.fc8.x86_64.rpm
e3a80d3c0f84f91d549577f5752cc5faf682cd1c glib2-debuginfo-2.14.3-1.fc8.x86_64.rpm
4b0a6c4845c1f2f8cc0cf7960d2fc85f142d31a9 glib2-static-2.14.3-1.fc8.x86_64.rpm
34cbf10a66375877825ad13543b8c71c3564046a glib2-devel-2.14.3-1.fc8.ppc.rpm
3f9df047bf860f2e71a94b984a771c0be2b3a211 glib2-debuginfo-2.14.3-1.fc8.ppc.rpm
8a4c440a4efeae3d72489652a6b50a6f5f295b08 glib2-2.14.3-1.fc8.ppc.rpm
ca6b56607a6369097442a546e94421a074da7254 glib2-static-2.14.3-1.fc8.ppc.rpm
1dcb05ea2fac9d92c63ce0217d93e6915f9f826e glib2-2.14.3-1.fc8.src.rpm

Historique

2007-11-08 : Version Initiale

Recevez les bulletins FrSIRT

Le service FrSIRT VNS permet aux professionnels de la sécurité (RSSI, DSI, administrateurs et consultants) de recevoir en temps-réel, par email, SMS et flux RSS/XML, des bulletins de vulnérabilités complets, détaillés et personnalisés.

Recherche

Newsletter

	Mozilla Firefox for Mac OS X GIF Rendering Code Execution Vulnerability
	Mozilla Products Remote Code Execution Vulnerabilities
	Mozilla Products Code Execution and Injection Vulnerabilities
	Mozilla JavaScript Garbage Collector Code Execution Vulnerability
	Mozilla Thunderbird Code Execution and Cross Site Scripting Issues
	Mozilla Firefox and SeaMonkey Multiple Remote Code Execution Issues
	Mozilla Thunderbird Multiple Security Bypass and Code Execution Issues

	Cisco PIX and ASA Information Disclosure and DoS Vulnerabilities
	Cisco Secure ACS EAP Remote Denial Of Service Vulnerability
	Cisco Products Remote DNS Cache Poisoning Vulnerability
	Cisco Wide Area Application Services CUPS Remote Vulnerability
	Cisco UCM Denial of Service and Authentication Bypass Vulnerabilities
	Cisco Intrusion Prevention System Jumbo Frame Vulnerability
	Cisco VPN Client Deterministic Network Enhancer Privilege Escalation

	IBM AIX "swcons" Insecure Permission Privilege Escalation Vulnerability
	IBM WebSphere Application Server Cross Site Scripting Vulnerability
	IBM DB2 CLR Stored Procedures Unspecified Vulnerability
	IBM Lotus Quickr Multiple Cross Site Scripting Vulnerabilities
	IBM WebSphere Portal Remote Authentication Bypass Vulnerability
	IBM Rational ClearQuest Login Page Cross Site Scripting Vulnerability
	IBM WebSphere Application Server Security Exposure Vulnerabilities