Solutions de vulnérabilité

L'analyse périodique de vulnérabilité Nimsoft Cloud Monitor vérifie la vulnérabilité ci-dessous. Pour connaître les solutions de vulnérabilité les plus récemment ajoutées analysées par WatchMouse, rendez-vous sur la vue d'ensemble Solutions de vulnérabilité

Catégorie: Debian Local Security Checks Facteur de risque: High Ajouté: 11 mars 2010
Synopsis:

The remote host is missing the DSA-2011 security update

Description:

William Grant discovered that the dpkg-source component of dpkg, the low-level infrastructure for handling the installation and removal of Debian software packages, is vulnerable to path traversal attacks. A specially crafted Debian source package can lead to file modification outside of the destination directory when extracting the package content. For the stable distribution (lenny), this problem has been fixed in version 1.14.29.

See also:

http://www.debian.org/security/2010/dsa-2011

Solution:

The Debian project recommends that you upgrade your dpkg packages.

Risk factor:

High