Test Kennung:	1.3.6.1.4.1.25623.1.0.120733
Kategorie:	Amazon Linux Local Security Checks
Titel:	Amazon Linux: Security Advisory (ALAS-2016-744)
Zusammenfassung:	The remote host is missing an update for the 'libgcrypt, gnupg' package(s) announced via the ALAS-2016-744 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'libgcrypt, gnupg' package(s) announced via the ALAS-2016-744 advisory. Vulnerability Insight: A design flaw was found in the libgcrypt PRNG (Pseudo-Random Number Generator). An attacker who can obtain the first 580 bytes of the PRNG output can trivially predict the following 20 bytes. Affected Software/OS: 'libgcrypt, gnupg' package(s) on Amazon Linux. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2016-6313 BugTraq ID: 92527 http://www.securityfocus.com/bid/92527 Debian Security Information: DSA-3649 (Google Search) http://www.debian.org/security/2016/dsa-3649 Debian Security Information: DSA-3650 (Google Search) http://www.debian.org/security/2016/dsa-3650 https://security.gentoo.org/glsa/201610-04 https://security.gentoo.org/glsa/201612-01 https://lists.gnupg.org/pipermail/gnupg-announce/2016q3/000395.html RedHat Security Advisories: RHSA-2016:2674 http://rhn.redhat.com/errata/RHSA-2016-2674.html http://www.securitytracker.com/id/1036635 http://www.ubuntu.com/usn/USN-3064-1 http://www.ubuntu.com/usn/USN-3065-1
Copyright	Copyright (C) 2016 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.