Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2010-0616)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.122330

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2010-0616)

Resumen: The remote host is missing an update for the 'NetworkManager, dbus-glib' package(s) announced via the ELSA-2010-0616 advisory.

Descripción: Summary:
The remote host is missing an update for the 'NetworkManager, dbus-glib' package(s) announced via the ELSA-2010-0616 advisory.

Vulnerability Insight:
NetworkManager:

[1:0.7.0-10.el5_5.1]
- Rebuild to fix D-Bus property access (for dbus-glib CVE-2010-1172)

dbus-glib:

[0.73-10]
- Add patch to fix CVE-2010-1172
Drop broken-xml.patch which this one now incorporates
Resolves: #588397
(and #585395)

Affected Software/OS:
'NetworkManager, dbus-glib' package(s) on Oracle Linux 5.

Solution:
Please install the updated package(s).

CVSS Score:
3.6

CVSS Vector:
AV:L/AC:L/Au:N/C:N/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-1172
40908
http://secunia.com/advisories/40908
40925
http://secunia.com/advisories/40925
42347
http://www.securityfocus.com/bid/42347
42397
http://secunia.com/advisories/42397
ADV-2010-2063
http://www.vupen.com/english/advisories/2010/2063
ADV-2010-3097
http://www.vupen.com/english/advisories/2010/3097
RHSA-2010:0616
http://www.redhat.com/support/errata/RHSA-2010-0616.html
SUSE-SR:2010:019
http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html
SUSE-SR:2010:020
http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00001.html
SUSE-SR:2010:022
http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00006.html
glib-property-security-bypass(61041)
https://exchange.xforce.ibmcloud.com/vulnerabilities/61041
http://cgit.freedesktop.org/dbus/dbus-glib/commit/?h=rhel5&id=9a6bce9b615abca6068348c1606ba8eaf13d9ae0
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
http://support.avaya.com/css/P8/documents/100113103
https://bugzilla.redhat.com/show_bug.cgi?id=585394

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.122330
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2010-0616)
Resumen:	The remote host is missing an update for the 'NetworkManager, dbus-glib' package(s) announced via the ELSA-2010-0616 advisory.
Descripción:	Summary: The remote host is missing an update for the 'NetworkManager, dbus-glib' package(s) announced via the ELSA-2010-0616 advisory. Vulnerability Insight: NetworkManager: [1:0.7.0-10.el5_5.1] - Rebuild to fix D-Bus property access (for dbus-glib CVE-2010-1172) dbus-glib: [0.73-10] - Add patch to fix CVE-2010-1172 Drop broken-xml.patch which this one now incorporates Resolves: #588397 (and #585395) Affected Software/OS: 'NetworkManager, dbus-glib' package(s) on Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 3.6 CVSS Vector: AV:L/AC:L/Au:N/C:N/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-1172 40908 http://secunia.com/advisories/40908 40925 http://secunia.com/advisories/40925 42347 http://www.securityfocus.com/bid/42347 42397 http://secunia.com/advisories/42397 ADV-2010-2063 http://www.vupen.com/english/advisories/2010/2063 ADV-2010-3097 http://www.vupen.com/english/advisories/2010/3097 RHSA-2010:0616 http://www.redhat.com/support/errata/RHSA-2010-0616.html SUSE-SR:2010:019 http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html SUSE-SR:2010:020 http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00001.html SUSE-SR:2010:022 http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00006.html glib-property-security-bypass(61041) https://exchange.xforce.ibmcloud.com/vulnerabilities/61041 http://cgit.freedesktop.org/dbus/dbus-glib/commit/?h=rhel5&id=9a6bce9b615abca6068348c1606ba8eaf13d9ae0 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705 http://support.avaya.com/css/P8/documents/100113103 https://bugzilla.redhat.com/show_bug.cgi?id=585394
Copyright	Copyright (C) 2015 Greenbone AG