Refererte CVEs:
CVE-2009-0688
Beskrivelse:
\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d \u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d Ubuntu Security Notice USN-790-1 24 juni 2009 Cyrus-sasl2 sikkerhetsproblem CVE-2009-0688 \u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d \u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d\u003d et sikkerhetsproblem påvirker følgende Ubuntu utgivelser: Ubuntu 6.06 LTS Ubuntu 8.04 LTS Ubuntu 8.10 Ubuntu 9.04 Denne veiledningen gjelder også tilsvarende versjoner av Kubuntu, Edubuntu og Xubuntu. Problemet kan rettes opp ved å oppgradere systemet til følgende pakken versjoner: Ubuntu 6.06 LTS: libsasl2 2.1.19.dfsg1-0.1ubuntu3.1 Ubuntu 8.04 LTS: libsasl2-2 2.1.22.dfsg1-18ubuntu2.1 Ubuntu 8.10: libsasl2 -2 2.1.22.dfsg1-21ubuntu2.1 Ubuntu 9.04: libsasl2-2 2.1.22.dfsg1-23ubuntu3.1 Etter en standard systemoppgradering du må starte tjenester bruker SASL til effekten de nødvendige endringene. Detaljer følger: James Ralston oppdaget at Cyrus SASL base64 koding funksjonen kan brukes unsafely. Hvis en ekstern angriper sender en spesiallaget forespørsel til en tjeneste som brukes SASL, kan det føre til tap av privatliv eller krasje programmet, noe som resulterer i et tjenestenekt.
Mer ...
Mer UNIX og Linux Forum Emner Du kan finne nyttig
Powered by 
06-24-2009
Gjengede Mode
