FrSIRT - Fedora Security Update Fixes Boost Denial of Service Vulnerabilities / Exploit

French Security Incident Response Team

Français

English

Fedora Security Update Fixes Boost Denial of Service Vulnerabilities

Date de Publication : 2008-01-23 © FrSIRT.COM
Titre : Fedora Security Update Fixes Boost Denial of Service Vulnerabilities
Identifiant : FrSIRT/AVIS-2008-0250
CVE ID : CVE-2008-0171 - CVE-2008-0172
Risque : Bas (1/4) -

Exploitable à distance : Oui
Exploitable en local : Oui

En savoir plus

Description

Produits affectés

Solution

Références

Description Technique

Plusieurs vulnérabilités ont été identifiées dans Fedora, elles pourraient être exploitées par des attaquants afin de causer un déni de service [...]

Solution

Installer les mises à jour :

c240d83f722e464a8dbd86e7f60b6de335106a3d boost-debuginfo-1.33.1-15.fc7.ppc64.rpm
f97e3be03ffbd2603312cfe72df612d3de0d0f73 boost-doc-1.33.1-15.fc7.ppc64.rpm
c104bed650cc0dea51b3622b5d469760c9cabf95 boost-devel-static-1.33.1-15.fc7.ppc64.rpm
6260197c99e3c95763c0d9c85d5be67062f8ea6d boost-devel-1.33.1-15.fc7.ppc64.rpm
53e58fcbb68c4709806a1116acd61a826c2f3091 boost-1.33.1-15.fc7.ppc64.rpm
ce355eb4734ce916420f3f65f9d6a2c65b518698 boost-debuginfo-1.33.1-15.fc7.i386.rpm
424495dc83e61648eeec734008665dd161878e3a boost-doc-1.33.1-15.fc7.i386.rpm
4012201f1586fdac3873bae1f7d9471fb3c9ff6d boost-devel-static-1.33.1-15.fc7.i386.rpm
a78e8315d25b253221b0b245bb7b3081d4ee1e2d boost-devel-1.33.1-15.fc7.i386.rpm
8309c289b795b05704745d7fba45f83e0e5086fa boost-1.33.1-15.fc7.i386.rpm
8b9546d43854a2927e68e05df288d7a8aa5eb91b boost-debuginfo-1.33.1-15.fc7.x86_64.rpm
d5350d7a02ed548f542763a2527ecc5638262378 boost-doc-1.33.1-15.fc7.x86_64.rpm
bf8a45c8ece6dfc66b932b7bcbe414f5fb5fab86 boost-devel-static-1.33.1-15.fc7.x86_64.rpm
258fe539d71bb3ab6033b785b382105bd5b2bdd7 boost-devel-1.33.1-15.fc7.x86_64.rpm
4e9578e47c75bbf0eaf9cbf893213c81d7e94ac7 boost-1.33.1-15.fc7.x86_64.rpm
c9e3528623ac7f11bc7d6f257a8e2cd79e0dad46 boost-debuginfo-1.33.1-15.fc7.ppc.rpm
50140c558d58e64bfe5a2406249e7ddb255a419e boost-doc-1.33.1-15.fc7.ppc.rpm
0a64de68803f08aa0c2aa91de7ff22c5aea58a3e boost-devel-static-1.33.1-15.fc7.ppc.rpm
2cca14b5158e50e56f5eae6afe04abb8c7ae49b5 boost-devel-1.33.1-15.fc7.ppc.rpm
83e082a9227ebc62697280a0e20c54d401145d30 boost-1.33.1-15.fc7.ppc.rpm
93bc0d997bfc36a96be29a6d29ec7fd21384ecf3 boost-1.33.1-15.fc7.src.rpm

Historique

2008-01-23 : Version Initiale

Recevez les bulletins FrSIRT

Le service FrSIRT VNS permet aux professionnels de la sécurité (RSSI, DSI, administrateurs et consultants) de recevoir en temps-réel, par email, SMS et flux RSS/XML, des bulletins de vulnérabilités complets, détaillés et personnalisés.

Recherche

Newsletter

	Oracle Products Multiple Code Execution Vulnerabilities
	Oracle Products Command Execution and SQL Injection Vulnerabilities
	Oracle Products Multiple Code Execution and SQL Injection Vulnerabilities
	Oracle Database "PITRIG_DROPMETADATA" Buffer Overflow Vulnerability
	Oracle Products Multiple Code Execution and SQL Injection Vulnerabilities
	Oracle JInitiator ActiveX Control Multiple Remote Buffer Overflow Vulnerabilities
	Oracle Products Multiple Remote Command Execution and SQL Injection Vulnerabilities

	IBM WebSphere Application Server Security Exposure Vulnerabilities
	IBM AIX DNS Transaction ID Remote Cache Poisoning Vulnerability
	IBM Tivoli Directory Server Entry Handling Double-Free Vulnerability
	IBM AFP Viewer Plug-In "SRC" Property Buffer Overflow Vulnerability
	IBM Hardware Management Console Cross Site Scripting Vulnerabilities
	IBM OS/400 BrSmRcvAndCheck Local Buffer Overflow Vulnerability
	IBM DB2 Multiple Buffer Overflow Vulnerabilities

	Sun Solaris System Management Agent Buffer Overflow Vulnerability
	Sun Update Fixes Mozilla Thunderbird Multiple Vulnerabilities
	Sun Java JDK and JRE Code Execution Vulnerabilities
	Sun Solaris DNS Protocol Remote Cache Poisoning Vulnerability
	Sun Solaris Tomcat JSP/Servlet Container Multiple Vulnerabilities
	Sun Java System Access Manager XSLT Code Execution Vulnerability
	Sun Solaris 10 Adobe Reader Multiple Code Execution Vulnerabilities