Test Kennung:	1.3.6.1.4.1.25623.1.0.842918
Kategorie:	Ubuntu Local Security Checks
Titel:	Ubuntu Update for quagga USN-3102-1
Zusammenfassung:	The remote host is missing an update for the 'quagga'; package(s) announced via the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'quagga' package(s) announced via the referenced advisory. Vulnerability Insight: It was discovered that Quagga incorrectly handled dumping data. A remote attacker could possibly use a large BGP packet to cause Quagga to crash, resulting in a denial of service. (CVE-2016-4049) It was discovered that the Quagga package incorrectly set permissions on the configuration directory. A local user could use this issue to possibly obtain sensitive information. (CVE-2016-4036) Affected Software/OS: quagga on Ubuntu 16.04 LTS, Ubuntu 14.04 LTS, Ubuntu 12.04 LTS Solution: Please Install the Updated Packages. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2016-4049 BugTraq ID: 88561 http://www.securityfocus.com/bid/88561 Debian Security Information: DSA-3654 (Google Search) http://www.debian.org/security/2016/dsa-3654 https://security.gentoo.org/glsa/201701-48 http://www.openwall.com/lists/oss-security/2016/04/27/7 https://lists.quagga.net/pipermail/quagga-dev/2016-January/014699.html https://lists.quagga.net/pipermail/quagga-dev/2016-February/014743.html RedHat Security Advisories: RHSA-2017:0794 http://rhn.redhat.com/errata/RHSA-2017-0794.html http://www.securitytracker.com/id/1035699 SuSE Security Announcement: openSUSE-SU-2016:1313 (Google Search) http://lists.opensuse.org/opensuse-updates/2016-05/msg00062.html Common Vulnerability Exposure (CVE) ID: CVE-2016-4036 BugTraq ID: 87324 http://www.securityfocus.com/bid/87324 SuSE Security Announcement: openSUSE-SU-2016:1030 (Google Search) http://lists.opensuse.org/opensuse-updates/2016-04/msg00040.html
Copyright	Copyright (C) 2016 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.