Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-2953-1
HistoryJun 08, 2014 - 12:00 a.m.

dpkg - security update

2014-06-0800:00:00
Google
osv.dev
5

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

JSON

Multiple vulnerabilities were discovered in dpkg that allow file
modification through path traversal when unpacking source packages with
specially crafted patch files.

This update had been scheduled before the end of security support for
the oldstable distribution (squeeze), hence an exception has been made
and was released through the security archive. However, no further updates
should be expected.

For the oldstable distribution (squeeze), these problems have been fixed in
version 1.15.11.

For the stable distribution (wheezy), these problems have been fixed in
version 1.16.15.

For the testing distribution (jessie), these problems will be fixed
soon.

For the unstable distribution (sid), these problems have been fixed in
version 1.17.10.

We recommend that you upgrade your dpkg packages.

Related

debian 1
openvas 7
nessus 4
ubuntu 1
fedora 3
securityvulns 2
mageia 1
prion 2
debiancve 2
cvelist 2
ubuntucve 2
cve 2
debian
debian
[SECURITY] [DSA 2953-1] dpkg security update
2014-06-08 15:36:49
openvas
openvas
Ubuntu: Security Advisory (USN-2242-1)
2014-06-17 00:00:00
Debian: Security Advisory (DSA-2953-1)
2014-06-07 00:00:00
Debian Security Advisory DSA 2953-1 (dpkg - security update)
2014-06-08 00:00:00
nessus
nessus
Ubuntu 14.04 LTS : dpkg vulnerabilities (USN-2242-1)
2014-06-11 00:00:00
Fedora 20 : dpkg-1.16.15-1.fc20 (2014-7697)
2014-07-21 00:00:00
Debian DSA-2953-1 : dpkg - security update
2014-06-09 00:00:00
ubuntu
ubuntu
dpkg vulnerabilities
2014-06-10 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: dpkg-1.16.15-1.fc19
2014-08-07 15:34:11
[SECURITY] Fedora 20 Update: dpkg-1.16.15-1.fc20
2014-07-20 03:23:56
[SECURITY] Fedora 20 Update: dpkg-1.16.16-5.fc20
2015-05-12 20:49:31
securityvulns
securityvulns
dpkg directory traversal
2014-06-13 00:00:00
[oss-security] Re: CVE request: another path traversal in dpkg-source during unpack
2014-06-13 00:00:00
mageia
mageia
Updated dpkg packages fixes security vulnerabilities
2014-07-09 02:47:58
prion
prion
Directory traversal
2014-05-30 18:55:00
Directory traversal
2014-05-30 18:55:00
debiancve
debiancve
CVE-2014-3865
2014-05-30 18:55:00
CVE-2014-3864
2014-05-30 18:55:00
cvelist
cvelist
CVE-2014-3865
2014-05-30 18:00:00
CVE-2014-3864
2014-05-30 18:00:00
ubuntucve
ubuntucve
CVE-2014-3865
2014-05-30 00:00:00
CVE-2014-3864
2014-05-30 00:00:00
cve
cve
CVE-2014-3865
2014-05-30 18:55:00
CVE-2014-3864
2014-05-30 18:55:00

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

JSON
Related for OSV:DSA-2953-1
debian1openvas7nessus4ubuntu1fedora3securityvulns2mageia1prion2debiancve2cvelist2ubuntucve2cve2