Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2007-0542)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 146377 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.122640

Kategorie: Oracle Linux Local Security Checks

Titel: Oracle: Security Advisory (ELSA-2007-0542)

Zusammenfassung: The remote host is missing an update for the 'mcstrans' package(s) announced via the ELSA-2007-0542 advisory.

Beschreibung: Summary:
The remote host is missing an update for the 'mcstrans' package(s) announced via the ELSA-2007-0542 advisory.

Vulnerability Insight:
[0.2.6-1]
- Don't allow categories > 1023
Resolves: #288941

[0.2.3-1]
- Additional fix to handle ssh root/sysadm_r/s0:c1,c2
Resolves: #224637

[0.2.1-1]
- Rewrite to handle MLS properly
Resolves: #225355

[0.1.10-2]
- Cleanup memory when complete

[0.1.10-1]
- Fix Memory Leak
Resolves: #218173

[0.1.9-1]
- Add -pie
- Fix compiler warnings
- Fix Memory Leak
Resolves: #218173

[0.1.8-3]
- Fix subsys locking in init script

[0.1.8-1]
- Only allow one version to run
- rebuild

[0.1.7-1]
- Apply sgrubb patch to only call getpeercon on translations

[0.1.6-1]
- Exit gracefully when selinux is not enabled

[0.1.5-1]
- Fix sighup handling

[0.1.4-1]
- Add patch from sgrubb
- Fix 64 bit size problems
- Increase the open file limit
- Make sure maximum size is not exceeded

[0.1.3-1]
- Move initscripts to /etc/rc.d/init.d

[0.1.2-1]
- Drop Privs

[0.1.1-1]
- Initial Version
- This daemon reuses the code from libsetrans

Affected Software/OS:
'mcstrans' package(s) on Oracle Linux 5.

Solution:
Please install the updated package(s).

CVSS Score:
1.9

CVSS Vector:
AV:L/AC:M/Au:N/C:N/I:N/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2007-4570
26371
http://www.securityfocus.com/bid/26371
27589
http://secunia.com/advisories/27589
39244
http://osvdb.org/39244
RHSA-2007:0542
https://rhn.redhat.com/errata/RHSA-2007-0542.html
https://bugzilla.redhat.com/attachment.cgi?id=193951
https://bugzilla.redhat.com/show_bug.cgi?id=288201
oval:org.mitre.oval:def:10350
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10350
rhel-mctrans-dos(38357)
https://exchange.xforce.ibmcloud.com/vulnerabilities/38357

Copyright Copyright (C) 2015 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.122640
Kategorie:	Oracle Linux Local Security Checks
Titel:	Oracle: Security Advisory (ELSA-2007-0542)
Zusammenfassung:	The remote host is missing an update for the 'mcstrans' package(s) announced via the ELSA-2007-0542 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'mcstrans' package(s) announced via the ELSA-2007-0542 advisory. Vulnerability Insight: [0.2.6-1] - Don't allow categories > 1023 Resolves: #288941 [0.2.3-1] - Additional fix to handle ssh root/sysadm_r/s0:c1,c2 Resolves: #224637 [0.2.1-1] - Rewrite to handle MLS properly Resolves: #225355 [0.1.10-2] - Cleanup memory when complete [0.1.10-1] - Fix Memory Leak Resolves: #218173 [0.1.9-1] - Add -pie - Fix compiler warnings - Fix Memory Leak Resolves: #218173 [0.1.8-3] - Fix subsys locking in init script [0.1.8-1] - Only allow one version to run - rebuild [0.1.7-1] - Apply sgrubb patch to only call getpeercon on translations [0.1.6-1] - Exit gracefully when selinux is not enabled [0.1.5-1] - Fix sighup handling [0.1.4-1] - Add patch from sgrubb - Fix 64 bit size problems - Increase the open file limit - Make sure maximum size is not exceeded [0.1.3-1] - Move initscripts to /etc/rc.d/init.d [0.1.2-1] - Drop Privs [0.1.1-1] - Initial Version - This daemon reuses the code from libsetrans Affected Software/OS: 'mcstrans' package(s) on Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 1.9 CVSS Vector: AV:L/AC:M/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2007-4570 26371 http://www.securityfocus.com/bid/26371 27589 http://secunia.com/advisories/27589 39244 http://osvdb.org/39244 RHSA-2007:0542 https://rhn.redhat.com/errata/RHSA-2007-0542.html https://bugzilla.redhat.com/attachment.cgi?id=193951 https://bugzilla.redhat.com/show_bug.cgi?id=288201 oval:org.mitre.oval:def:10350 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10350 rhel-mctrans-dos(38357) https://exchange.xforce.ibmcloud.com/vulnerabilities/38357
Copyright	Copyright (C) 2015 Greenbone AG