Slackware Advisory SSA:2004-161-01 Cvs Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2004-161-01.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2004-161-01

Insight

New cvs packages that have been upgraded to cvs-1.11.17 are available for Slackware 8.1, 9.0, 9.1, and -current to fix various security issues. Sites running a CVS server should upgrade to the new CVS package right away. More details about the issues may be found in the Common Vulnerabilities and Exposures (CVE) database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0416 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0417 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0418 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0414

Severity

Classification

CVE CVE-2004-0414, CVE-2004-0416, CVE-2004-0417, CVE-2004-0418
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Slackware Advisory SSA:2003-149-01 CUPS DoS vulnerability fixed
Slackware Advisory SSA:2003-260-01 OpenSSH updated again
Slackware Advisory SSA:2006-207-01 mutt
Slackware Advisory SSA:2004-239-01 gaim
Slackware Advisory SSA:2004-154-02 PHP local security issue

Slackware Advisory SSA:2004-161-01 cvs

Take action and discover your vulnerabilities