Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2013-1540)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 146377 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.123532

Kategorie: Oracle Linux Local Security Checks

Titel: Oracle: Security Advisory (ELSA-2013-1540)

Zusammenfassung: The remote host is missing an update for the 'cheese, control-center, ekiga, evolution, evolution-data-server, evolution-exchange, evolution-mapi, gnome-panel, gnome-python2-desktop, gtkhtml3, libgdata, nautilus-sendto, openchange, pidgin, planner, totem' package(s) announced via the ELSA-2013-1540 advisory.

Beschreibung: Summary:
The remote host is missing an update for the 'cheese, control-center, ekiga, evolution, evolution-data-server, evolution-exchange, evolution-mapi, gnome-panel, gnome-python2-desktop, gtkhtml3, libgdata, nautilus-sendto, openchange, pidgin, planner, totem' package(s) announced via the ELSA-2013-1540 advisory.

Vulnerability Insight:
cheese
[2.28.1-8]
- Rebuild against newer evolution-data-server.
Resolves: #973276

control-center
[2.28.1-39]
- Rebuild against newer evolution-data-server.
Resolves: #973279

ekiga
[3.2.6-4]
- Rebuild against newer evolution-data-server.
- Add patch to build break (include where needed)
Resolves: #973281

evolution
[2.32.3-30.el6]
- Update patch for RH bug #975409 (Custom message in alarm notification)
- Add patch for RH bug #1014743 (Use system timezone has no effect)
- Add patch for RH bug #1014677 (Search filter persists when changing folders)

[2.32.3-29.el6]
- Add patch for RH bug #1013543 (Freeze during migration of pre-2.24 mails)

[2.32.3-28.el6]
- Add patch for RH bug #1012399 (Fails to display task mail attachment)
- Bump evolution-data-server version requirement (for RH bug #1009426)

[2.32.3-27.el6]
- Add patch for RH bug #1009517 (Be aware of 'no-alarm-after-start' calendar capability)

[2.32.3-26.el6]
- Add patch for RH bug #1006764 (Plugin actions not updated)

[2.32.3-25.el6]
- Add patch for RH bug #1003578 (Update actions on search execute)

[2.32.3-24.el6]
- Update translations for the Exchange Web Services advertisement

[2.32.3-23.el6]
- Build evolution-devel-docs for noarch only

[2.32.3-22.el6]
- Add a devel-docs subpackage and do not ship evolution-settings (RH bug #1000323)

[2.32.3-21.el6]
- Remove bogofilter plugin from el6 (missed previous removal during rebase)

[2.32.3-20.el6]
- Update bn_IN translation

[2.32.3-19.el6]
- Show a one-time dialog on upgrade advertising Exchange Web Services.

[2.32.3-18.el6]
- Update translation patch

[2.32.3-17.el6]
- Add patch for icons in a message list Wide View

[2.32.3-16.el6]
- Add patch for translation updates

[2.32.3-15.el6]
- Update patch for RH bug #949610 (Avoid runtime warnings caused by async load)

[2.32.3-14.el6]
- Update patch for RH bug #975409 (Custom message in alarm notification)
- Add patch for RH bug #985528 (Multiple contacts remove confuses view)

[2.32.3-13.el6]
- Obsolete evolution-conduits, thus an update can be done, when it's installed
- Add patch for RH bug #981313 (a11y in the Contacts' minicard view)
- Add patch for RH bug #981257 (Save changes in addressbook backend's ensure_sources)

[2.32.3-12.el6]
- Add patch for use-after-free memory in mail account editor found by valgrind

[2.32.3-11.el6]
- Add patch for RH bug #978525 (CamelSession left with unset network-available)

[2.32.3-10.el6]
- Add patch for RH bug #956510 (Alarm notify crash and other related fixes in alarm notify)
- Update patch for RH bug #977292 (Close also evolution-alarm-notify process)

[2.32.3-9.el6]
- Add patch for RH bug #624851 (Select S/MIME encryption certificate)
- Add patch for RH bug #628174 (Copy/Paste text in calendar views)
- Add patch for RH bug #971496 (Notify user about question dialogs)
- Add patch for RH bug #977292 (--force-shutdown closes also factories)

[2.32.3-8.el6]
- Add patch ... [Please see the references for more information on the vulnerabilities]

Affected Software/OS:
'cheese, control-center, ekiga, evolution, evolution-data-server, evolution-exchange, evolution-mapi, gnome-panel, gnome-python2-desktop, gtkhtml3, libgdata, nautilus-sendto, openchange, pidgin, planner, totem' package(s) on Oracle Linux 6.

Solution:
Please install the updated package(s).

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2013-4166
http://rhn.redhat.com/errata/RHSA-2013-1540.html
http://seclists.org/oss-sec/2013/q3/191
https://bugzilla.redhat.com/show_bug.cgi?id=973728
https://git.gnome.org/browse/evolution-data-server/commit/?h=gnome-3-8&id=f7059bb37dcce485d36d769142ec9515708d8ae5
https://git.gnome.org/browse/evolution-data-server/commit/?id=5d8b92c622f6927b253762ff9310479dd3ac627d

Copyright Copyright (C) 2015 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.123532
Kategorie:	Oracle Linux Local Security Checks
Titel:	Oracle: Security Advisory (ELSA-2013-1540)
Zusammenfassung:	The remote host is missing an update for the 'cheese, control-center, ekiga, evolution, evolution-data-server, evolution-exchange, evolution-mapi, gnome-panel, gnome-python2-desktop, gtkhtml3, libgdata, nautilus-sendto, openchange, pidgin, planner, totem' package(s) announced via the ELSA-2013-1540 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'cheese, control-center, ekiga, evolution, evolution-data-server, evolution-exchange, evolution-mapi, gnome-panel, gnome-python2-desktop, gtkhtml3, libgdata, nautilus-sendto, openchange, pidgin, planner, totem' package(s) announced via the ELSA-2013-1540 advisory. Vulnerability Insight: cheese [2.28.1-8] - Rebuild against newer evolution-data-server. Resolves: #973276 control-center [2.28.1-39] - Rebuild against newer evolution-data-server. Resolves: #973279 ekiga [3.2.6-4] - Rebuild against newer evolution-data-server. - Add patch to build break (include where needed) Resolves: #973281 evolution [2.32.3-30.el6] - Update patch for RH bug #975409 (Custom message in alarm notification) - Add patch for RH bug #1014743 (Use system timezone has no effect) - Add patch for RH bug #1014677 (Search filter persists when changing folders) [2.32.3-29.el6] - Add patch for RH bug #1013543 (Freeze during migration of pre-2.24 mails) [2.32.3-28.el6] - Add patch for RH bug #1012399 (Fails to display task mail attachment) - Bump evolution-data-server version requirement (for RH bug #1009426) [2.32.3-27.el6] - Add patch for RH bug #1009517 (Be aware of 'no-alarm-after-start' calendar capability) [2.32.3-26.el6] - Add patch for RH bug #1006764 (Plugin actions not updated) [2.32.3-25.el6] - Add patch for RH bug #1003578 (Update actions on search execute) [2.32.3-24.el6] - Update translations for the Exchange Web Services advertisement [2.32.3-23.el6] - Build evolution-devel-docs for noarch only [2.32.3-22.el6] - Add a devel-docs subpackage and do not ship evolution-settings (RH bug #1000323) [2.32.3-21.el6] - Remove bogofilter plugin from el6 (missed previous removal during rebase) [2.32.3-20.el6] - Update bn_IN translation [2.32.3-19.el6] - Show a one-time dialog on upgrade advertising Exchange Web Services. [2.32.3-18.el6] - Update translation patch [2.32.3-17.el6] - Add patch for icons in a message list Wide View [2.32.3-16.el6] - Add patch for translation updates [2.32.3-15.el6] - Update patch for RH bug #949610 (Avoid runtime warnings caused by async load) [2.32.3-14.el6] - Update patch for RH bug #975409 (Custom message in alarm notification) - Add patch for RH bug #985528 (Multiple contacts remove confuses view) [2.32.3-13.el6] - Obsolete evolution-conduits, thus an update can be done, when it's installed - Add patch for RH bug #981313 (a11y in the Contacts' minicard view) - Add patch for RH bug #981257 (Save changes in addressbook backend's ensure_sources) [2.32.3-12.el6] - Add patch for use-after-free memory in mail account editor found by valgrind [2.32.3-11.el6] - Add patch for RH bug #978525 (CamelSession left with unset network-available) [2.32.3-10.el6] - Add patch for RH bug #956510 (Alarm notify crash and other related fixes in alarm notify) - Update patch for RH bug #977292 (Close also evolution-alarm-notify process) [2.32.3-9.el6] - Add patch for RH bug #624851 (Select S/MIME encryption certificate) - Add patch for RH bug #628174 (Copy/Paste text in calendar views) - Add patch for RH bug #971496 (Notify user about question dialogs) - Add patch for RH bug #977292 (--force-shutdown closes also factories) [2.32.3-8.el6] - Add patch ... [Please see the references for more information on the vulnerabilities] Affected Software/OS: 'cheese, control-center, ekiga, evolution, evolution-data-server, evolution-exchange, evolution-mapi, gnome-panel, gnome-python2-desktop, gtkhtml3, libgdata, nautilus-sendto, openchange, pidgin, planner, totem' package(s) on Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2013-4166 http://rhn.redhat.com/errata/RHSA-2013-1540.html http://seclists.org/oss-sec/2013/q3/191 https://bugzilla.redhat.com/show_bug.cgi?id=973728 https://git.gnome.org/browse/evolution-data-server/commit/?h=gnome-3-8&id=f7059bb37dcce485d36d769142ec9515708d8ae5 https://git.gnome.org/browse/evolution-data-server/commit/?id=5d8b92c622f6927b253762ff9310479dd3ac627d
Copyright	Copyright (C) 2015 Greenbone AG