ID de Prueba:	1.3.6.1.4.1.25623.1.0.122358
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2010-0423)
Resumen:	The remote host is missing an update for the 'krb5' package(s) announced via the ELSA-2010-0423 advisory.
Descripción:	Summary: The remote host is missing an update for the 'krb5' package(s) announced via the ELSA-2010-0423 advisory. Vulnerability Insight: [1.6.1-36.el5_5.4] - add candidate patch to correct KDC null pointer dereference which could be triggered by malformed client requests (CVE-2010-1321, #583703) [1.6.1-36.el5_5.3] - add upstream patch to fix a few use-after-free bugs, including one in kadmind (CVE-2010-0629, #578185) Affected Software/OS: 'krb5' package(s) on Oracle Linux 3, Oracle Linux 4, Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-1321 BugTraq ID: 40235 http://www.securityfocus.com/bid/40235 Bugtraq: 20100518 MITKRB5-SA-2010-005 [CVE-2010-1321] GSS-API lib null pointer deref (Google Search) http://www.securityfocus.com/archive/1/511331/100/0/threaded Bugtraq: 20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX (Google Search) http://www.securityfocus.com/archive/1/516397/100/0/threaded Cert/CC Advisory: TA10-287A http://www.us-cert.gov/cas/techalerts/TA10-287A.html Cert/CC Advisory: TA11-201A http://www.us-cert.gov/cas/techalerts/TA11-201A.html Debian Security Information: DSA-2052 (Google Search) http://www.debian.org/security/2010/dsa-2052 http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041615.html http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041645.html http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041654.html HPdes Security Advisory: HPSBMU02799 http://marc.info/?l=bugtraq&m=134254866602253&w=2 HPdes Security Advisory: HPSBUX02544 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02257427 HPdes Security Advisory: SSRT100107 http://www.mandriva.com/security/advisories?name=MDVSA-2010:100 http://osvdb.org/64744 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11604 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7198 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7450 http://www.redhat.com/support/errata/RHSA-2010-0423.html http://www.redhat.com/support/errata/RHSA-2010-0770.html http://www.redhat.com/support/errata/RHSA-2010-0807.html http://www.redhat.com/support/errata/RHSA-2010-0873.html http://www.redhat.com/support/errata/RHSA-2010-0935.html http://www.redhat.com/support/errata/RHSA-2010-0987.html http://www.redhat.com/support/errata/RHSA-2011-0152.html http://www.redhat.com/support/errata/RHSA-2011-0880.html http://secunia.com/advisories/39762 http://secunia.com/advisories/39784 http://secunia.com/advisories/39799 http://secunia.com/advisories/39818 http://secunia.com/advisories/39849 http://secunia.com/advisories/40346 http://secunia.com/advisories/40685 http://secunia.com/advisories/41967 http://secunia.com/advisories/42432 http://secunia.com/advisories/42974 http://secunia.com/advisories/43335 http://secunia.com/advisories/44954 SuSE Security Announcement: SUSE-SR:2010:013 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html SuSE Security Announcement: SUSE-SR:2010:014 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html SuSE Security Announcement: SUSE-SR:2010:019 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html SuSE Security Announcement: SUSE-SU-2012:0010 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00002.html SuSE Security Announcement: SUSE-SU-2012:0042 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00010.html http://www.ubuntu.com/usn/USN-940-1 http://www.ubuntu.com/usn/USN-940-2 http://www.vupen.com/english/advisories/2010/1177 http://www.vupen.com/english/advisories/2010/1192 http://www.vupen.com/english/advisories/2010/1193 http://www.vupen.com/english/advisories/2010/1196 http://www.vupen.com/english/advisories/2010/1222 http://www.vupen.com/english/advisories/2010/1574 http://www.vupen.com/english/advisories/2010/1882 http://www.vupen.com/english/advisories/2010/3112 http://www.vupen.com/english/advisories/2011/0134
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.