Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

CentOS Update for cvs CESA-2012:0321 centos6

Severity

Critical

Family

CentOS Local Security Checks

CVSSv2 Base

10.0

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Solution Type

Vendor Patch

Created

11 years ago

Modified

5 years ago

The remote host is missing an update for the 'cvs' package(s) announced via the referenced advisory.

Insight

Concurrent Version System (CVS) is a version control system that can record the history of your files. A heap-based buffer overflow flaw was found in the way the CVS client handled responses from HTTP proxies. A malicious HTTP proxy could use this flaw to cause the CVS client to crash or, possibly, execute arbitrary code with the privileges of the user running the CVS client. (CVE-2012-0804) All users of cvs are advised to upgrade to these updated packages, which contain a patch to correct this issue.

Affected Software

cvs on CentOS 6

Solution

Please install the updated packages.

Common Vulnerabilities and Exposures (CVE)

CVE-2012-0804

References

http://lists.centos.org/pipermail/centos-announce/2012-February/018453

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

CentOS Update for cvs CESA-2012:0321 centos6

Information

Severity

Severity

Family

Family

CVSSv2 Base

CVSSv2 Base

CVSSv2 Vector

CVSSv2 Vector

Solution Type

Solution Type

Created

Created

Modified

Modified

Share

Summary

Insight

Insight

Affected Software

Affected Software

Solution

Solution

Common Vulnerabilities and Exposures (CVE)

References