Soluciones para vulnerabilidades

La exploración de vulnerabilidades periódica de Nimsoft Cloud Monitor busca la vulnerabilidad siguiente. Para ver las soluciones añadidas más recientemente que Nimsoft Cloud Monitor explora, visite Soluciones para vulnerabilidades.

Categoría: SuSE Local Security Checks Factor de riesgo: High Añadido: 18 mar 2010
Synopsis:

The remote SuSE system is missing a security patch for OpenOffice_org-base-drivers-postgresql

Description:

This update of OpenOffice_org includes fixes for the following vulnerabilities:
- CVE-2009-0217: XML signature weakness - CVE-2009-2949: XPM Import Integer Overflow - CVE-2009-2950: GIF Import Heap Overflow - CVE-2009-3301: MS Word sprmTDefTable Memory Corruption - CVE-2009-3302: MS Word sprmTDefTable Memory Corruption - CVE-2010-0136: In the ooo-build variant of OpenOffice_org VBA Macro support does not honor Macro security settings.

See also:

https://bugzilla.novell.com/show_bug.cgi?id=564497
https://bugzilla.novell.com/show_bug.cgi?id=564503
https://bugzilla.novell.com/show_bug.cgi?id=566030
https://bugzilla.novell.com/show_bug.cgi?id=521564
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2949
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2950
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0136
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3301
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3302
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0217

Solution:

Run yast to install the security patch for OpenOffice_org-base-drivers-postgresql

Risk factor:

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)