Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2007-0542)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.122640

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2007-0542)

Resumen: The remote host is missing an update for the 'mcstrans' package(s) announced via the ELSA-2007-0542 advisory.

Descripción: Summary:
The remote host is missing an update for the 'mcstrans' package(s) announced via the ELSA-2007-0542 advisory.

Vulnerability Insight:
[0.2.6-1]
- Don't allow categories > 1023
Resolves: #288941

[0.2.3-1]
- Additional fix to handle ssh root/sysadm_r/s0:c1,c2
Resolves: #224637

[0.2.1-1]
- Rewrite to handle MLS properly
Resolves: #225355

[0.1.10-2]
- Cleanup memory when complete

[0.1.10-1]
- Fix Memory Leak
Resolves: #218173

[0.1.9-1]
- Add -pie
- Fix compiler warnings
- Fix Memory Leak
Resolves: #218173

[0.1.8-3]
- Fix subsys locking in init script

[0.1.8-1]
- Only allow one version to run
- rebuild

[0.1.7-1]
- Apply sgrubb patch to only call getpeercon on translations

[0.1.6-1]
- Exit gracefully when selinux is not enabled

[0.1.5-1]
- Fix sighup handling

[0.1.4-1]
- Add patch from sgrubb
- Fix 64 bit size problems
- Increase the open file limit
- Make sure maximum size is not exceeded

[0.1.3-1]
- Move initscripts to /etc/rc.d/init.d

[0.1.2-1]
- Drop Privs

[0.1.1-1]
- Initial Version
- This daemon reuses the code from libsetrans

Affected Software/OS:
'mcstrans' package(s) on Oracle Linux 5.

Solution:
Please install the updated package(s).

CVSS Score:
1.9

CVSS Vector:
AV:L/AC:M/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2007-4570
26371
http://www.securityfocus.com/bid/26371
27589
http://secunia.com/advisories/27589
39244
http://osvdb.org/39244
RHSA-2007:0542
https://rhn.redhat.com/errata/RHSA-2007-0542.html
https://bugzilla.redhat.com/attachment.cgi?id=193951
https://bugzilla.redhat.com/show_bug.cgi?id=288201
oval:org.mitre.oval:def:10350
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10350
rhel-mctrans-dos(38357)
https://exchange.xforce.ibmcloud.com/vulnerabilities/38357

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.122640
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2007-0542)
Resumen:	The remote host is missing an update for the 'mcstrans' package(s) announced via the ELSA-2007-0542 advisory.
Descripción:	Summary: The remote host is missing an update for the 'mcstrans' package(s) announced via the ELSA-2007-0542 advisory. Vulnerability Insight: [0.2.6-1] - Don't allow categories > 1023 Resolves: #288941 [0.2.3-1] - Additional fix to handle ssh root/sysadm_r/s0:c1,c2 Resolves: #224637 [0.2.1-1] - Rewrite to handle MLS properly Resolves: #225355 [0.1.10-2] - Cleanup memory when complete [0.1.10-1] - Fix Memory Leak Resolves: #218173 [0.1.9-1] - Add -pie - Fix compiler warnings - Fix Memory Leak Resolves: #218173 [0.1.8-3] - Fix subsys locking in init script [0.1.8-1] - Only allow one version to run - rebuild [0.1.7-1] - Apply sgrubb patch to only call getpeercon on translations [0.1.6-1] - Exit gracefully when selinux is not enabled [0.1.5-1] - Fix sighup handling [0.1.4-1] - Add patch from sgrubb - Fix 64 bit size problems - Increase the open file limit - Make sure maximum size is not exceeded [0.1.3-1] - Move initscripts to /etc/rc.d/init.d [0.1.2-1] - Drop Privs [0.1.1-1] - Initial Version - This daemon reuses the code from libsetrans Affected Software/OS: 'mcstrans' package(s) on Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 1.9 CVSS Vector: AV:L/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-4570 26371 http://www.securityfocus.com/bid/26371 27589 http://secunia.com/advisories/27589 39244 http://osvdb.org/39244 RHSA-2007:0542 https://rhn.redhat.com/errata/RHSA-2007-0542.html https://bugzilla.redhat.com/attachment.cgi?id=193951 https://bugzilla.redhat.com/show_bug.cgi?id=288201 oval:org.mitre.oval:def:10350 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10350 rhel-mctrans-dos(38357) https://exchange.xforce.ibmcloud.com/vulnerabilities/38357
Copyright	Copyright (C) 2015 Greenbone AG