ГлавнаяБаза уязвимостей БДУ → BDU:2015-04092
4.6средняя

BDU:2015-04092 (CVE-2009-2905)

Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
Опубликовано: 2015-04-28
Описание

Множественные уязвимости пакета libnewt0.52 операционной системы Debian GNU/Linux, эксплуатация которых может привести к нарушению конфиденциальности, целостности и доступности защищаемой информации. Эксплуатация уязвимостей может быть осуществлена локальным злоумышленником

Затрагиваемое ПО и версии
Debian GNU/Linux (до 4)
Способ устранения

Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
Debian GNU/Linux 4:
ppc:
python-newt - 0.52.2-10+etch1
newt-tcl - 0.52.2-10+etch1
libnewt-dev - 0.52.2-10+etch1
libnewt-pic - 0.52.2-10+etch1
libnewt0.52 - 0.52.2-10+etch1
whiptail - 0.52.2-10+etch1
s390x:
libnewt-pic - 0.52.2-10+etch1
libnewt-dev - 0.52.2-10+etch1
whiptail - 0.52.2-10+etch1
python-newt - 0.52.2-10+etch1
newt-tcl - 0.52.2-10+etch1
libnewt0.52 - 0.52.2-10+etch1
i686:
newt-tcl - 0.52.2-10+etch1
libnewt-pic - 0.52.2-10+etch1
whiptail - 0.52.2-10+etch1
python-newt - 0.52.2-10+etch1
libnewt-dev - 0.52.2-10+etch1
libnewt0.52 - 0.52.2-10+etch1
sparc:
libnewt0.52 - 0.52.2-10+etch1
libnewt-pic - 0.52.2-10+etch1
libnewt-dev - 0.52.2-10+etch1
newt-tcl - 0.52.2-10+etch1
python-newt - 0.52.2-10+etch1
whiptail - 0.52.2-10+etch1
x86-64:
newt-tcl - 0.52.2-10+etch1
python-newt - 0.52.2-10+etch1
libnewt-pic - 0.52.2-10+etch1
whiptail - 0.52.2-10+etch1
libnewt0.52 - 0.52.2-10+etch1
libnewt-dev - 0.52.2-10+etch1
alpha:
whiptail - 0.52.2-10+etch1
libnewt0.52 - 0.52.2-10+etch1
libnewt-dev - 0.52.2-10+etch1
python-newt - 0.52.2-10+etch1
libnewt-pic - 0.52.2-10+etch1
newt-tcl - 0.52.2-10+etch1
ia64:
libnewt-pic - 0.52.2-10+etch1
libnewt-dev - 0.52.2-10+etch1
whiptail - 0.52.2-10+etch1
libnewt0.52 - 0.52.2-10+etch1
newt-tcl - 0.52.2-10+etch1
python-newt - 0.52.2-10+etch1
mips:
whiptail - 0.52.2-10+etch1
libnewt-pic - 0.52.2-10+etch1
libnewt-dev - 0.52.2-10+etch1
newt-tcl - 0.52.2-10+etch1
libnewt0.52 - 0.52.2-10+etch1
python-newt - 0.52.2-10+etch1
mipsel:
newt-tcl - 0.52.2-10+etch1
python-newt - 0.52.2-10+etch1
libnewt-dev - 0.52.2-10+etch1
libnewt0.52 - 0.52.2-10+etch1
whiptail - 0.52.2-10+etch1
libnewt-pic - 0.52.2-10+etch1
arm:
whiptail - 0.52.2-10+etch1
libnewt-pic - 0.52.2-10+etch1
newt-tcl - 0.52.2-10+etch1
python-newt - 0.52.2-10+etch1
libnewt-dev - 0.52.2-10+etch1
libnewt0.52 - 0.52.2-10+etch1
Debian GNU/Linux 5:
ppc:
libnewt-pic - 0.52.2-11.3+lenny1
whiptail - 0.52.2-11.3+lenny1
python-newt - 0.52.2-11.3+lenny1
libnewt0.52 - 0.52.2-11.3+lenny1
libnewt-dev - 0.52.2-11.3+lenny1
newt-tcl - 0.52.2-11.3+lenny1
i686:
libnewt-pic - 0.52.2-11.3+lenny1
newt-tcl - 0.52.2-11.3+lenny1
python-newt - 0.52.2-11.3+lenny1
libnewt-dev - 0.52.2-11.3+lenny1
whiptail - 0.52.2-11.3+lenny1
libnewt0.52 - 0.52.2-11.3+lenny1
arm:
whiptail - 0.52.2-11.3+lenny1
python-newt - 0.52.2-11.3+lenny1
libnewt-dev - 0.52.2-11.3+lenny1
libnewt0.52 - 0.52.2-11.3+lenny1
newt-tcl - 0.52.2-11.3+lenny1
libnewt-pic - 0.52.2-11.3+lenny1
sparc:
whiptail - 0.52.2-11.3+lenny1
libnewt-dev - 0.52.2-11.3+lenny1
python-newt - 0.52.2-11.3+lenny1
newt-tcl - 0.52.2-11.3+lenny1
libnewt0.52 - 0.52.2-11.3+lenny1
libnewt-pic - 0.52.2-11.3+lenny1
x86-64:
python-newt - 0.52.2-11.3+lenny1
newt-tcl - 0.52.2-11.3+lenny1
libnewt-dev - 0.52.2-11.3+lenny1
libnewt-pic - 0.52.2-11.3+lenny1
libnewt0.52 - 0.52.2-11.3+lenny1
whiptail - 0.52.2-11.3+lenny1
armel:
newt-tcl - 0.52.2-11.3+lenny1
libnewt-pic - 0.52.2-11.3+lenny1
libnewt-dev - 0.52.2-11.3+lenny1
whiptail - 0.52.2-11.3+lenny1
libnewt0.52 - 0.52.2-11.3+lenny1
python-newt - 0.52.2-11.3+lenny1
alpha:
libnewt0.52 - 0.52.2-11.3+lenny1
libnewt-pic - 0.52.2-11.3+lenny1
whiptail - 0.52.2-11.3+lenny1
python-newt - 0.52.2-11.3+lenny1
newt-tcl - 0.52.2-11.3+lenny1
libnewt-dev - 0.52.2-11.3+lenny1
ia64:
libnewt-dev - 0.52.2-11.3+lenny1
libnewt0.52 - 0.52.2-11.3+lenny1
newt-tcl - 0.52.2-11.3+lenny1
python-newt - 0.52.2-11.3+lenny1
whiptail - 0.52.2-11.3+lenny1
libnewt-pic - 0.52.2-11.3+lenny1
mips:
newt-tcl - 0.52.2-11.3+lenny1
libnewt0.52 - 0.52.2-11.3+lenny1
libnewt-dev - 0.52.2-11.3+lenny1
libnewt-pic - 0.52.2-11.3+lenny1
python-newt - 0.52.2-11.3+lenny1
whiptail - 0.52.2-11.3+lenny1
mipsel:
whiptail - 0.52.2-11.3+lenny1
python-newt - 0.52.2-11.3+lenny1
libnewt0.52 - 0.52.2-11.3+lenny1
libnewt-pic - 0.52.2-11.3+lenny1
newt-tcl - 0.52.2-11.3+lenny1
libnewt-dev - 0.52.2-11.3+lenny1
hppa:
libnewt0.52 - 0.52.2-11.3+lenny1
libnewt-dev - 0.52.2-11.3+lenny1
whiptail - 0.52.2-11.3+lenny1
python-newt - 0.52.2-11.3+lenny1
newt-tcl - 0.52.2-11.3+lenny1
libnewt-pic - 0.52.2-11.3+lenny1

Оценка CVSS
Балл4.6 — средняя опасность
Источники и патчи
http://www.debian.org/security/dsa-1894/http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2905
Проверьте безопасность своего сайта и почты → Полная проверка домена