Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2010-0343)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.122368

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2010-0343)

Resumen: The remote host is missing an update for the 'krb5' package(s) announced via the ELSA-2010-0343 advisory.

Descripción: Summary:
The remote host is missing an update for the 'krb5' package(s) announced via the ELSA-2010-0343 advisory.

Vulnerability Insight:
[1.6.1-36.el5_5.3]
- add upstream patch to fix a few use-after-free bugs, including one in
kadmind (CVE-2010-0629, #578185)

[1.6.1-36.el5_5.2]
- pull changes to libkrb5 to properly handle and chase off-path referrals
back from 1.7 (#574387)

Affected Software/OS:
'krb5' package(s) on Oracle Linux 5.

Solution:
Please install the updated package(s).

CVSS Score:
4.0

CVSS Vector:
AV:N/AC:L/Au:S/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-0629
BugTraq ID: 39247
http://www.securityfocus.com/bid/39247
Bugtraq: 20100406 MITKRB5-SA-2010-003 [CVE-2010-0629] denial of service in kadmind in older krb5 releases (Google Search)
http://www.securityfocus.com/archive/1/510566/100/0/threaded
Debian Security Information: DSA-2031 (Google Search)
http://www.debian.org/security/2010/dsa-2031
http://lists.fedoraproject.org/pipermail/package-announce/2010-April/038556.html
http://www.mandriva.com/security/advisories?name=MDVSA-2010:071
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9489
http://www.redhat.com/support/errata/RHSA-2010-0343.html
http://securitytracker.com/id?1023821
http://secunia.com/advisories/39264
http://secunia.com/advisories/39290
http://secunia.com/advisories/39315
http://secunia.com/advisories/39324
http://secunia.com/advisories/39367
SuSE Security Announcement: SUSE-SR:2010:009 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00002.html
http://ubuntu.com/usn/usn-924-1
http://www.vupen.com/english/advisories/2010/0876

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.122368
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2010-0343)
Resumen:	The remote host is missing an update for the 'krb5' package(s) announced via the ELSA-2010-0343 advisory.
Descripción:	Summary: The remote host is missing an update for the 'krb5' package(s) announced via the ELSA-2010-0343 advisory. Vulnerability Insight: [1.6.1-36.el5_5.3] - add upstream patch to fix a few use-after-free bugs, including one in kadmind (CVE-2010-0629, #578185) [1.6.1-36.el5_5.2] - pull changes to libkrb5 to properly handle and chase off-path referrals back from 1.7 (#574387) Affected Software/OS: 'krb5' package(s) on Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 4.0 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0629 BugTraq ID: 39247 http://www.securityfocus.com/bid/39247 Bugtraq: 20100406 MITKRB5-SA-2010-003 [CVE-2010-0629] denial of service in kadmind in older krb5 releases (Google Search) http://www.securityfocus.com/archive/1/510566/100/0/threaded Debian Security Information: DSA-2031 (Google Search) http://www.debian.org/security/2010/dsa-2031 http://lists.fedoraproject.org/pipermail/package-announce/2010-April/038556.html http://www.mandriva.com/security/advisories?name=MDVSA-2010:071 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9489 http://www.redhat.com/support/errata/RHSA-2010-0343.html http://securitytracker.com/id?1023821 http://secunia.com/advisories/39264 http://secunia.com/advisories/39290 http://secunia.com/advisories/39315 http://secunia.com/advisories/39324 http://secunia.com/advisories/39367 SuSE Security Announcement: SUSE-SR:2010:009 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00002.html http://ubuntu.com/usn/usn-924-1 http://www.vupen.com/english/advisories/2010/0876
Copyright	Copyright (C) 2015 Greenbone AG