Vulnerability Bulletins |
Denegación de servicio en libksba |
|
Vulnerability classification |
|
| Property | Value |
| Confidence level | Oficial |
| Impact | Denegación de Servicio |
| Dificulty | Experto |
| Required attacker level | Acceso remoto sin cuenta a un servicio exotico |
System information |
|
| Property | Value |
| Affected manufacturer | GNU/Linux |
| Affected software | libksba 0.9.12 |
Description |
|
|
Se ha descubierto una vulnerabilidad en la librería libksba 0.9.12 y posiblemente en otras versiones. La vulnerabilidad reside en un error al manejar certificados X.509. Un atacante remoto podría causar una denegación de servicio, usando en la firma un certificado X.509 mal formado. |
|
Solution |
|
|
Actualización de software Mandriva Mandriva Linux 2006 X86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/2006.0/i586/libksba8-0.9.11-2.1.20060mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/2006.0/i586/libksba8-devel-0.9.11-2.1.20060mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/2006.0/SRPMS/libksba-0.9.11-2.1.20060mdk.src.rpm X86_64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/2006.0/x86_64/lib64ksba8-0.9.11-2.1.20060mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/2006.0/x86_64/lib64ksba8-devel-0.9.11-2.1.20060mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/2006.0/SRPMS/libksba-0.9.11-2.1.20060mdk.src.rpm Corporate Server 4.0 X86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/4.0/i586/libksba8-0.9.11-2.1.20060mlcs4.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/4.0/i586/libksba8-devel-0.9.11-2.1.20060mlcs4.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/4.0/SRPMS/libksba-0.9.11-2.1.20060mlcs4.src.rpm X86_64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/4.0/x86_64/lib64ksba8-0.9.11-2.1.20060mlcs4.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/4.0/x86_64/lib64ksba8-devel-0.9.11-2.1.20060mlcs4.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/4.0/SRPMS/libksba-0.9.11-2.1.20 |
|
Standar resources |
|
| Property | Value |
| CVE | CVE-2006-5111 |
| BID | |
Other resources |
|
|
Mandriva Security Advisory (MDKSA-2006:183) http://www.mandriva.com/security/advisories?name=MDKSA-2006:183 |
|
Version history |
||
| Version | Comments | Date |
| 1.0 | Aviso emitido | 2006-10-18 |