Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2010-0108)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.122393

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2010-0108)

Resumen: The remote host is missing an update for the 'NetworkManager' package(s) announced via the ELSA-2010-0108 advisory.

Descripción: Summary:
The remote host is missing an update for the 'NetworkManager' package(s) announced via the ELSA-2010-0108 advisory.

Vulnerability Insight:
[1:0.7.0-9.el5_4]
- Ensure a connection is not used after its CA certificate has been deleted
- Resolves: CVE-2009-4144
- Fix possible information disclosure by nm-connection-editor
- Resolves: CVE-2009-4145

Affected Software/OS:
'NetworkManager' package(s) on Oracle Linux 5.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-4144
37580
http://www.securityfocus.com/bid/37580
38420
http://secunia.com/advisories/38420
RHSA-2010:0108
http://www.redhat.com/support/errata/RHSA-2010-0108.html
SUSE-SR:2010:002
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00000.html
[oss-security] 20091216 NetworkManager CVE assignment
http://www.openwall.com/lists/oss-security/2009/12/16/3
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560067
http://git.gnome.org/browse/network-manager-applet/commit/?h=NETWORKMANAGER_APPLET_0_7&id=4020594dfbf566f1852f0acb36ad631a9e73a82b
https://bugzilla.redhat.com/show_bug.cgi?id=546795
oval:org.mitre.oval:def:11315
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11315
Common Vulnerability Exposure (CVE) ID: CVE-2009-4145
37819
http://secunia.com/advisories/37819
http://git.gnome.org/browse/network-manager-applet/commit/?h=NETWORKMANAGER_APPLET_0_7&id=56d87fcb86acb5359558e0a2ee702cfc0c3391f2
http://git.gnome.org/browse/network-manager-applet/commit/?h=NETWORKMANAGER_APPLET_0_7&id=8627880e07c8345f69ed639325280c7f62a8f894
https://bugzilla.redhat.com/show_bug.cgi?id=546117
networkmanager-nmconnectioneditor-info-disc(54898)
https://exchange.xforce.ibmcloud.com/vulnerabilities/54898
oval:org.mitre.oval:def:10539
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10539

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.122393
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2010-0108)
Resumen:	The remote host is missing an update for the 'NetworkManager' package(s) announced via the ELSA-2010-0108 advisory.
Descripción:	Summary: The remote host is missing an update for the 'NetworkManager' package(s) announced via the ELSA-2010-0108 advisory. Vulnerability Insight: [1:0.7.0-9.el5_4] - Ensure a connection is not used after its CA certificate has been deleted - Resolves: CVE-2009-4144 - Fix possible information disclosure by nm-connection-editor - Resolves: CVE-2009-4145 Affected Software/OS: 'NetworkManager' package(s) on Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-4144 37580 http://www.securityfocus.com/bid/37580 38420 http://secunia.com/advisories/38420 RHSA-2010:0108 http://www.redhat.com/support/errata/RHSA-2010-0108.html SUSE-SR:2010:002 http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00000.html [oss-security] 20091216 NetworkManager CVE assignment http://www.openwall.com/lists/oss-security/2009/12/16/3 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560067 http://git.gnome.org/browse/network-manager-applet/commit/?h=NETWORKMANAGER_APPLET_0_7&id=4020594dfbf566f1852f0acb36ad631a9e73a82b https://bugzilla.redhat.com/show_bug.cgi?id=546795 oval:org.mitre.oval:def:11315 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11315 Common Vulnerability Exposure (CVE) ID: CVE-2009-4145 37819 http://secunia.com/advisories/37819 http://git.gnome.org/browse/network-manager-applet/commit/?h=NETWORKMANAGER_APPLET_0_7&id=56d87fcb86acb5359558e0a2ee702cfc0c3391f2 http://git.gnome.org/browse/network-manager-applet/commit/?h=NETWORKMANAGER_APPLET_0_7&id=8627880e07c8345f69ed639325280c7f62a8f894 https://bugzilla.redhat.com/show_bug.cgi?id=546117 networkmanager-nmconnectioneditor-info-disc(54898) https://exchange.xforce.ibmcloud.com/vulnerabilities/54898 oval:org.mitre.oval:def:10539 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10539
Copyright	Copyright (C) 2015 Greenbone AG