CentOS Local Security Checks : CentOS Update for NetworkManager CESA-2018:3665 centos7

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 146377 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.882980

Kategorie: CentOS Local Security Checks

Titel: CentOS Update for NetworkManager CESA-2018:3665 centos7

Zusammenfassung: The remote host is missing an update for the 'NetworkManager'; package(s) announced via the CESA-2018:3665 advisory.

Beschreibung: Summary:
The remote host is missing an update for the 'NetworkManager'
package(s) announced via the CESA-2018:3665 advisory.

Vulnerability Insight:
NetworkManager is a system network service that manages network devices and
connections, attempting to keep active network connectivity when available.
Its capabilities include managing Ethernet, wireless, mobile broadband
(WWAN), and PPPoE devices, as well as providing VPN integration with a
variety of different VPN services.

Security Fix(es):

* systemd: Out-of-bounds heap write in systemd-networkd dhcpv6 option
handling (CVE-2018-15688)

For more details about the security issue(s), including the impact, a CVSS
score, and other related information, refer to the CVE page(s) listed in
the References section.

Red Hat would like to thank Ubuntu Security Team for reporting this issue.
Upstream acknowledges Felix Wilhelm (Google) as the original reporter.

Affected Software/OS:
NetworkManager on CentOS 7.

Solution:
Please install the updated package(s).

CVSS Score:
5.8

CVSS Vector:
AV:A/AC:L/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2018-15688
BugTraq ID: 105745
http://www.securityfocus.com/bid/105745
https://security.gentoo.org/glsa/201810-10
https://github.com/systemd/systemd/pull/10518
https://lists.debian.org/debian-lts-announce/2018/11/msg00017.html
RedHat Security Advisories: RHBA-2019:0327
https://access.redhat.com/errata/RHBA-2019:0327
RedHat Security Advisories: RHSA-2018:3665
https://access.redhat.com/errata/RHSA-2018:3665
RedHat Security Advisories: RHSA-2019:0049
https://access.redhat.com/errata/RHSA-2019:0049
https://usn.ubuntu.com/3806-1/
https://usn.ubuntu.com/3807-1/

Copyright Copyright (C) 2018 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.882980
Kategorie:	CentOS Local Security Checks
Titel:	CentOS Update for NetworkManager CESA-2018:3665 centos7
Zusammenfassung:	The remote host is missing an update for the 'NetworkManager'; package(s) announced via the CESA-2018:3665 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'NetworkManager' package(s) announced via the CESA-2018:3665 advisory. Vulnerability Insight: NetworkManager is a system network service that manages network devices and connections, attempting to keep active network connectivity when available. Its capabilities include managing Ethernet, wireless, mobile broadband (WWAN), and PPPoE devices, as well as providing VPN integration with a variety of different VPN services. Security Fix(es): * systemd: Out-of-bounds heap write in systemd-networkd dhcpv6 option handling (CVE-2018-15688) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank Ubuntu Security Team for reporting this issue. Upstream acknowledges Felix Wilhelm (Google) as the original reporter. Affected Software/OS: NetworkManager on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 5.8 CVSS Vector: AV:A/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2018-15688 BugTraq ID: 105745 http://www.securityfocus.com/bid/105745 https://security.gentoo.org/glsa/201810-10 https://github.com/systemd/systemd/pull/10518 https://lists.debian.org/debian-lts-announce/2018/11/msg00017.html RedHat Security Advisories: RHBA-2019:0327 https://access.redhat.com/errata/RHBA-2019:0327 RedHat Security Advisories: RHSA-2018:3665 https://access.redhat.com/errata/RHSA-2018:3665 RedHat Security Advisories: RHSA-2019:0049 https://access.redhat.com/errata/RHSA-2019:0049 https://usn.ubuntu.com/3806-1/ https://usn.ubuntu.com/3807-1/
Copyright	Copyright (C) 2018 Greenbone AG