Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2011-0258)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.122243

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2011-0258)

Resumen: The remote host is missing an update for the 'subversion' package(s) announced via the ELSA-2011-0258 advisory.

Descripción: Summary:
The remote host is missing an update for the 'subversion' package(s) announced via the ELSA-2011-0258 advisory.

Vulnerability Insight:
[1.6.11-2.2]
- add security fixes for CVE-2010-4644, CVE-2010-4539 (#672678)

[1.6.11-2.1]
- add security fix for CVE-2010-3315 (#640322)

Affected Software/OS:
'subversion' package(s) on Oracle Linux 6.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:L/Au:S/C:N/I:N/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-3315
41652
http://secunia.com/advisories/41652
43139
http://secunia.com/advisories/43139
43346
http://secunia.com/advisories/43346
ADV-2011-0264
http://www.vupen.com/english/advisories/2011/0264
APPLE-SA-2011-03-21-1
http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html
DSA-2118
http://www.debian.org/security/2010/dsa-2118
MDVSA-2010:199
http://www.mandriva.com/security/advisories?name=MDVSA-2010:199
RHSA-2011:0258
http://www.redhat.com/support/errata/RHSA-2011-0258.html
SUSE-SR:2010:024
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
USN-1053-1
http://www.ubuntu.com/usn/USN-1053-1
http://security-tracker.debian.org/tracker/CVE-2010-3315
http://subversion.apache.org/security/CVE-2010-3315-advisory.txt
http://support.apple.com/kb/HT4581
oval:org.mitre.oval:def:19007
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19007
Common Vulnerability Exposure (CVE) ID: CVE-2010-4539
1024934
http://www.securitytracker.com/id?1024934
42780
http://secunia.com/advisories/42780
42969
http://secunia.com/advisories/42969
43115
http://secunia.com/advisories/43115
45655
http://www.securityfocus.com/bid/45655
ADV-2011-0015
http://www.vupen.com/english/advisories/2011/0015
ADV-2011-0103
http://www.vupen.com/english/advisories/2011/0103
ADV-2011-0162
http://www.vupen.com/english/advisories/2011/0162
FEDORA-2011-0099
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053230.html
MDVSA-2011:006
http://www.mandriva.com/security/advisories?name=MDVSA-2011:006
RHSA-2011:0257
http://www.redhat.com/support/errata/RHSA-2011-0257.html
SUSE-SR:2011:005
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
[oss-security] 20110102 CVE request for subversion
http://openwall.com/lists/oss-security/2011/01/02/1
[oss-security] 20110103 Re: CVE request for subversion
http://openwall.com/lists/oss-security/2011/01/03/9
[oss-security] 20110104 Re: CVE request for subversion
http://openwall.com/lists/oss-security/2011/01/04/10
http://openwall.com/lists/oss-security/2011/01/04/8
[oss-security] 20110105 Re: CVE request for subversion
http://openwall.com/lists/oss-security/2011/01/05/4
[subversion-users] 20101104 apache coredump in mod_dav_svn
http://mail-archives.apache.org/mod_mbox/subversion-users/201011.mbox/%3C3923B919-C2BE-41AD-84ED-7207837FAD1A%40ncsa.illinois.edu%3E
[www-announce] 20101124 Apache Subversion 1.6.15 Released
http://mail-archives.apache.org/mod_mbox/www-announce/201011.mbox/%3CAANLkTi=5+NOi-Cp=fKCx6mAW-TofFVW=ikEQkXgQB8Bt%40mail.gmail.com%3E
http://svn.apache.org/repos/asf/subversion/tags/1.6.15/CHANGES
http://svn.apache.org/viewvc?view=revision&revision=1033166
https://bugzilla.redhat.com/show_bug.cgi?id=667407
subversion-walk-dos(64472)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64472
Common Vulnerability Exposure (CVE) ID: CVE-2010-4644
1024935
http://www.securitytracker.com/id?1024935
[dev] 20101104 "svn blame -g" causing svnserve to hang & mem usage to hit 2GB
http://svn.haxx.se/dev/archive-2010-11/0102.shtml
[subversion-users] 20101104 svnserve.exe (Win32) using 2GB of memory and then crashing?
http://mail-archives.apache.org/mod_mbox/subversion-users/201011.mbox/%3C4CD33B61.7030203%40thepond.com%3E
http://svn.apache.org/viewvc?view=revision&revision=1032808
subversion-blameg-dos(64473)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64473

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.122243
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2011-0258)
Resumen:	The remote host is missing an update for the 'subversion' package(s) announced via the ELSA-2011-0258 advisory.
Descripción:	Summary: The remote host is missing an update for the 'subversion' package(s) announced via the ELSA-2011-0258 advisory. Vulnerability Insight: [1.6.11-2.2] - add security fixes for CVE-2010-4644, CVE-2010-4539 (#672678) [1.6.11-2.1] - add security fix for CVE-2010-3315 (#640322) Affected Software/OS: 'subversion' package(s) on Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3315 41652 http://secunia.com/advisories/41652 43139 http://secunia.com/advisories/43139 43346 http://secunia.com/advisories/43346 ADV-2011-0264 http://www.vupen.com/english/advisories/2011/0264 APPLE-SA-2011-03-21-1 http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html DSA-2118 http://www.debian.org/security/2010/dsa-2118 MDVSA-2010:199 http://www.mandriva.com/security/advisories?name=MDVSA-2010:199 RHSA-2011:0258 http://www.redhat.com/support/errata/RHSA-2011-0258.html SUSE-SR:2010:024 http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html USN-1053-1 http://www.ubuntu.com/usn/USN-1053-1 http://security-tracker.debian.org/tracker/CVE-2010-3315 http://subversion.apache.org/security/CVE-2010-3315-advisory.txt http://support.apple.com/kb/HT4581 oval:org.mitre.oval:def:19007 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19007 Common Vulnerability Exposure (CVE) ID: CVE-2010-4539 1024934 http://www.securitytracker.com/id?1024934 42780 http://secunia.com/advisories/42780 42969 http://secunia.com/advisories/42969 43115 http://secunia.com/advisories/43115 45655 http://www.securityfocus.com/bid/45655 ADV-2011-0015 http://www.vupen.com/english/advisories/2011/0015 ADV-2011-0103 http://www.vupen.com/english/advisories/2011/0103 ADV-2011-0162 http://www.vupen.com/english/advisories/2011/0162 FEDORA-2011-0099 http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053230.html MDVSA-2011:006 http://www.mandriva.com/security/advisories?name=MDVSA-2011:006 RHSA-2011:0257 http://www.redhat.com/support/errata/RHSA-2011-0257.html SUSE-SR:2011:005 http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html [oss-security] 20110102 CVE request for subversion http://openwall.com/lists/oss-security/2011/01/02/1 [oss-security] 20110103 Re: CVE request for subversion http://openwall.com/lists/oss-security/2011/01/03/9 [oss-security] 20110104 Re: CVE request for subversion http://openwall.com/lists/oss-security/2011/01/04/10 http://openwall.com/lists/oss-security/2011/01/04/8 [oss-security] 20110105 Re: CVE request for subversion http://openwall.com/lists/oss-security/2011/01/05/4 [subversion-users] 20101104 apache coredump in mod_dav_svn http://mail-archives.apache.org/mod_mbox/subversion-users/201011.mbox/%3C3923B919-C2BE-41AD-84ED-7207837FAD1A%40ncsa.illinois.edu%3E [www-announce] 20101124 Apache Subversion 1.6.15 Released http://mail-archives.apache.org/mod_mbox/www-announce/201011.mbox/%3CAANLkTi=5+NOi-Cp=fKCx6mAW-TofFVW=ikEQkXgQB8Bt%40mail.gmail.com%3E http://svn.apache.org/repos/asf/subversion/tags/1.6.15/CHANGES http://svn.apache.org/viewvc?view=revision&revision=1033166 https://bugzilla.redhat.com/show_bug.cgi?id=667407 subversion-walk-dos(64472) https://exchange.xforce.ibmcloud.com/vulnerabilities/64472 Common Vulnerability Exposure (CVE) ID: CVE-2010-4644 1024935 http://www.securitytracker.com/id?1024935 [dev] 20101104 "svn blame -g" causing svnserve to hang & mem usage to hit 2GB http://svn.haxx.se/dev/archive-2010-11/0102.shtml [subversion-users] 20101104 svnserve.exe (Win32) using 2GB of memory and then crashing? http://mail-archives.apache.org/mod_mbox/subversion-users/201011.mbox/%3C4CD33B61.7030203%40thepond.com%3E http://svn.apache.org/viewvc?view=revision&revision=1032808 subversion-blameg-dos(64473) https://exchange.xforce.ibmcloud.com/vulnerabilities/64473
Copyright	Copyright (C) 2015 Greenbone AG