Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2009-1459)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.122436

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2009-1459)

Resumen: The remote host is missing an update for the 'cyrus-imapd' package(s) announced via the ELSA-2009-1459 advisory.

Descripción: Summary:
The remote host is missing an update for the 'cyrus-imapd' package(s) announced via the ELSA-2009-1459 advisory.

Vulnerability Insight:
[2.3.7-7.0.1.el5_4.3]
- Enabled lm_sensors-devel build dependency for x86 and x86_64 only

[2.3.7-7.3]
- fix more buffer overflows in cyrus sieve (CVE-2009-3235)

[2.3.7-7.2]
- bump release for rebuild

[2.3.7-7.1]
- fix buffer overflow in cyrus sieve (#521011)

Affected Software/OS:
'cyrus-imapd' package(s) on Oracle Linux 4, Oracle Linux 5.

Solution:
Please install the updated package(s).

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-2632
http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html
BugTraq ID: 36296
http://www.securityfocus.com/bid/36296
BugTraq ID: 36377
http://www.securityfocus.com/bid/36377
Debian Security Information: DSA-1881 (Google Search)
http://www.debian.org/security/2009/dsa-1881
https://www.redhat.com/archives/fedora-package-announce/2009-September/msg00491.html
https://lists.andrew.cmu.edu/pipermail/cyrus-cvs/2009-September/001253.html
https://lists.andrew.cmu.edu/pipermail/cyrus-cvs/2009-September/001254.html
http://dovecot.org/list/dovecot-news/2009-September/000135.html
http://www.openwall.com/lists/oss-security/2009/09/14/3
http://www.osvdb.org/58103
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10082
http://secunia.com/advisories/36629
http://secunia.com/advisories/36632
http://secunia.com/advisories/36698
http://secunia.com/advisories/36713
http://secunia.com/advisories/36904
SuSE Security Announcement: SUSE-SR:2009:016 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00001.html
http://www.ubuntu.com/usn/USN-838-1
http://www.vupen.com/english/advisories/2009/2559
http://www.vupen.com/english/advisories/2009/2641
Common Vulnerability Exposure (CVE) ID: CVE-2009-3235
http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10515
SuSE Security Announcement: SUSE-SR:2009:018 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html
http://www.vupen.com/english/advisories/2009/3184
XForce ISS Database: cmu-sieve-dovecot-unspecified-bo(53248)
https://exchange.xforce.ibmcloud.com/vulnerabilities/53248

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.122436
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2009-1459)
Resumen:	The remote host is missing an update for the 'cyrus-imapd' package(s) announced via the ELSA-2009-1459 advisory.
Descripción:	Summary: The remote host is missing an update for the 'cyrus-imapd' package(s) announced via the ELSA-2009-1459 advisory. Vulnerability Insight: [2.3.7-7.0.1.el5_4.3] - Enabled lm_sensors-devel build dependency for x86 and x86_64 only [2.3.7-7.3] - fix more buffer overflows in cyrus sieve (CVE-2009-3235) [2.3.7-7.2] - bump release for rebuild [2.3.7-7.1] - fix buffer overflow in cyrus sieve (#521011) Affected Software/OS: 'cyrus-imapd' package(s) on Oracle Linux 4, Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-2632 http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html BugTraq ID: 36296 http://www.securityfocus.com/bid/36296 BugTraq ID: 36377 http://www.securityfocus.com/bid/36377 Debian Security Information: DSA-1881 (Google Search) http://www.debian.org/security/2009/dsa-1881 https://www.redhat.com/archives/fedora-package-announce/2009-September/msg00491.html https://lists.andrew.cmu.edu/pipermail/cyrus-cvs/2009-September/001253.html https://lists.andrew.cmu.edu/pipermail/cyrus-cvs/2009-September/001254.html http://dovecot.org/list/dovecot-news/2009-September/000135.html http://www.openwall.com/lists/oss-security/2009/09/14/3 http://www.osvdb.org/58103 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10082 http://secunia.com/advisories/36629 http://secunia.com/advisories/36632 http://secunia.com/advisories/36698 http://secunia.com/advisories/36713 http://secunia.com/advisories/36904 SuSE Security Announcement: SUSE-SR:2009:016 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00001.html http://www.ubuntu.com/usn/USN-838-1 http://www.vupen.com/english/advisories/2009/2559 http://www.vupen.com/english/advisories/2009/2641 Common Vulnerability Exposure (CVE) ID: CVE-2009-3235 http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10515 SuSE Security Announcement: SUSE-SR:2009:018 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html http://www.vupen.com/english/advisories/2009/3184 XForce ISS Database: cmu-sieve-dovecot-unspecified-bo(53248) https://exchange.xforce.ibmcloud.com/vulnerabilities/53248
Copyright	Copyright (C) 2015 Greenbone AG