Test Kennung:	1.3.6.1.4.1.25623.1.0.120656
Kategorie:	Amazon Linux Local Security Checks
Titel:	Amazon Linux: Security Advisory (ALAS-2016-666)
Zusammenfassung:	The remote host is missing an update for the 'sos' package(s) announced via the ALAS-2016-666 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'sos' package(s) announced via the ALAS-2016-666 advisory. Vulnerability Insight: An insecure temporary file use flaw was found in the way sos created certain sosreport files. A local attacker could possibly use this flaw to perform a symbolic link attack to reveal the contents of sosreport files, or in some cases modify arbitrary files and escalate their privileges on the system. Affected Software/OS: 'sos' package(s) on Amazon Linux. Solution: Please install the updated package(s). CVSS Score: 4.6 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2015-7529 83162 http://www.securityfocus.com/bid/83162 RHSA-2016:0152 http://rhn.redhat.com/errata/RHSA-2016-0152.html RHSA-2016:0188 http://rhn.redhat.com/errata/RHSA-2016-0188.html USN-2845-1 http://www.ubuntu.com/usn/USN-2845-1 https://access.redhat.com/errata/RHSA-2016:0152 https://access.redhat.com/errata/RHSA-2016:0188 https://bugzilla.redhat.com/show_bug.cgi?id=1282542 https://github.com/sosreport/sos/issues/696
Copyright	Copyright (C) 2016 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.