Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2015-1447)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 146377 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.123069

Kategorie: Oracle Linux Local Security Checks

Titel: Oracle: Security Advisory (ELSA-2015-1447)

Zusammenfassung: The remote host is missing an update for the 'grep' package(s) announced via the ELSA-2015-1447 advisory.

Beschreibung: Summary:
The remote host is missing an update for the 'grep' package(s) announced via the ELSA-2015-1447 advisory.

Vulnerability Insight:
[2.20-3]
- Updated pcre buildrequires to require pcre-devel >= 7.8-7
Related: rhbz#1193030

[2.20-2]
- Fixed invalid UTF-8 byte sequence error in PCRE mode
(by pcre-backported-fixes patch)
Resolves: rhbz#1193030
- Fixed buffer overrun for grep -F
Resolves: CVE-2015-1345
- Fixed bogus date in the changelog

[2.20-1]
- New version
Resolves: rhbz#1064668
Resolves: rhbz#982215
Resolves: rhbz#1126757
Resolves: rhbz#1167766
Resolves: rhbz#1171806
- Fixed \w and \W behaviour in multibyte locales
Resolves: rhbz#799863
- Documented --fixed-regexp option
Resolves: rhbz#1103270

Affected Software/OS:
'grep' package(s) on Oracle Linux 6.

Solution:
Please install the updated package(s).

CVSS Score:
4.4

CVSS Vector:
AV:L/AC:M/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2012-5667
BugTraq ID: 57033
http://www.securityfocus.com/bid/57033
http://lists.gnu.org/archive/html/bug-grep/2012-12/msg00004.html
http://openwall.com/lists/oss-security/2012/12/22/6
RedHat Security Advisories: RHSA-2015:1447
http://rhn.redhat.com/errata/RHSA-2015-1447.html
Common Vulnerability Exposure (CVE) ID: CVE-2015-1345
BugTraq ID: 72281
http://www.securityfocus.com/bid/72281
http://www.openwall.com/lists/oss-security/2015/01/22/10
SuSE Security Announcement: openSUSE-SU-2015:0243 (Google Search)
http://lists.opensuse.org/opensuse-updates/2015-02/msg00037.html

Copyright Copyright (C) 2015 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.123069
Kategorie:	Oracle Linux Local Security Checks
Titel:	Oracle: Security Advisory (ELSA-2015-1447)
Zusammenfassung:	The remote host is missing an update for the 'grep' package(s) announced via the ELSA-2015-1447 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'grep' package(s) announced via the ELSA-2015-1447 advisory. Vulnerability Insight: [2.20-3] - Updated pcre buildrequires to require pcre-devel >= 7.8-7 Related: rhbz#1193030 [2.20-2] - Fixed invalid UTF-8 byte sequence error in PCRE mode (by pcre-backported-fixes patch) Resolves: rhbz#1193030 - Fixed buffer overrun for grep -F Resolves: CVE-2015-1345 - Fixed bogus date in the changelog [2.20-1] - New version Resolves: rhbz#1064668 Resolves: rhbz#982215 Resolves: rhbz#1126757 Resolves: rhbz#1167766 Resolves: rhbz#1171806 - Fixed \w and \W behaviour in multibyte locales Resolves: rhbz#799863 - Documented --fixed-regexp option Resolves: rhbz#1103270 Affected Software/OS: 'grep' package(s) on Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 4.4 CVSS Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2012-5667 BugTraq ID: 57033 http://www.securityfocus.com/bid/57033 http://lists.gnu.org/archive/html/bug-grep/2012-12/msg00004.html http://openwall.com/lists/oss-security/2012/12/22/6 RedHat Security Advisories: RHSA-2015:1447 http://rhn.redhat.com/errata/RHSA-2015-1447.html Common Vulnerability Exposure (CVE) ID: CVE-2015-1345 BugTraq ID: 72281 http://www.securityfocus.com/bid/72281 http://www.openwall.com/lists/oss-security/2015/01/22/10 SuSE Security Announcement: openSUSE-SU-2015:0243 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-02/msg00037.html
Copyright	Copyright (C) 2015 Greenbone AG