Gentoo Security Advisory GLSA 200804-05 (nx, Nxnode) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200804-05.

Solution

All NX Node users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-misc/nxnode-3.1.0-r2' All NX users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-misc/nx-3.1.0-r1' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200804-05 http://bugs.gentoo.org/show_bug.cgi?id=210317 http://www.gentoo.org/security/en/glsa/glsa-200801-09.xml

Insight

NX uses code from the X.org X11 server which is prone to multiple vulnerabilities.

Severity

Classification

CVE CVE-2007-5760, CVE-2007-5958, CVE-2007-6427, CVE-2007-6428, CVE-2007-6429, CVE-2008-0006

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Gentoo Security Advisory GLSA 200407-02 (Kernel)
Gentoo Security Advisory GLSA 200409-13 (lha)
Gentoo Security Advisory GLSA 200405-13 (neon)
Gentoo Security Advisory GLSA 200408-14 (acroread)
Gentoo Security Advisory GLSA 200405-23 (Heimdal)

Gentoo Security Advisory GLSA 200804-05 (nx, nxnode)

Take action and discover your vulnerabilities