 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.122647 |
| Categoría: | Oracle Linux Local Security Checks |
| Título: | Oracle: Security Advisory (ELSA-2007-1020) |
| Resumen: | The remote host is missing an update for the 'cups' package(s) announced via the ELSA-2007-1020 advisory. |
| Descripción: | Summary: The remote host is missing an update for the 'cups' package(s) announced via the ELSA-2007-1020 advisory. Vulnerability Insight: [1.2.4-11.14.el5_1.1] - Applied patch to fix CVE-2007-4351 (STR #2561, bug #353981). [1.2.4-11.14] - Applied patch to fix cupsd crash when failing to open a file: URI (STR #2351, bug #250415). [1.2.4-11.13] - Moved LSPP security attributes check before job creation (bug #231522). [1.2.4-11.12] - Moved LSPP access check before job creation (bug #231522). [1.2.4-11.11] - Better error checking in the LSPP patch (bug #231522). [1.2.4-11.10] - Applied patch to fix CVE-2007-3387 (bug #248223). [1.2.4-11.9] - Fixed IPv6 address parsing (bug #241400, STR #2117). - Fixed a bug that caused cups-lpd not to set the correct value for job-originating-host-name (bug #240223, STR #2023). - Cleaned up initscript error handling (bug #237953). - Fixed cups-lpd -odocument-format=... option (bug #230073, STR #2266). - Fixed If-Modified-Since: handling in libcups (bug #218764, STR #2133). - Make the initscript use start priority 56 (bug #213828). [1.2.4-11.8] - Applied fix for STR #2264 (bug #230118). - Added patch for UNIX domain sockets authentication (bug #230613). - LSPP: Updated patch for line-wrapped labels (bug #228107). [1.2.4-11.7] - Don't reload CUPS after rotating the logs with logrotate, but make sure to use the new file in that case (bug #215024). [1.2.4-11.6] - LSPP: added check_context() function for get_jobs(), get_job_attrs() and validate_user() (bug #229673). - Fixed a potential scheduler crash (bug #231522). Affected Software/OS: 'cups' package(s) on Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2007-4351 http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html BugTraq ID: 26268 http://www.securityfocus.com/bid/26268 Cert/CC Advisory: TA07-352A http://www.us-cert.gov/cas/techalerts/TA07-352A.html CERT/CC vulnerability note: VU#446897 http://www.kb.cert.org/vuls/id/446897 Cisco Security Advisory: 20080625 Wide Area Application Services (WAAS) Common UNIX Printing System (CUPS) Vulnerability http://www.cisco.com/en/US/products/products_security_response09186a00809a1f11.html Debian Security Information: DSA-1407 (Google Search) http://www.debian.org/security/2007/dsa-1407 https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00012.html http://security.gentoo.org/glsa/glsa-200711-16.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:204 http://secunia.com/secunia_research/2007-76/advisory/ https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10604 http://www.redhat.com/support/errata/RHSA-2007-1020.html http://www.redhat.com/support/errata/RHSA-2007-1022.html http://www.redhat.com/support/errata/RHSA-2007-1023.html http://www.securitytracker.com/id?1018879 http://secunia.com/advisories/27233 http://secunia.com/advisories/27410 http://secunia.com/advisories/27445 http://secunia.com/advisories/27447 http://secunia.com/advisories/27474 http://secunia.com/advisories/27494 http://secunia.com/advisories/27499 http://secunia.com/advisories/27540 http://secunia.com/advisories/27577 http://secunia.com/advisories/27604 http://secunia.com/advisories/27712 http://secunia.com/advisories/28136 http://secunia.com/advisories/30847 http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.501902 SuSE Security Announcement: SUSE-SA:2007:058 (Google Search) http://www.novell.com/linux/security/advisories/2007_58_cups.html https://usn.ubuntu.com/539-1/ http://www.vupen.com/english/advisories/2007/3681 http://www.vupen.com/english/advisories/2007/4238 http://www.vupen.com/english/advisories/2008/1934/references XForce ISS Database: cups-ippreadio-bo(38190) https://exchange.xforce.ibmcloud.com/vulnerabilities/38190 |
| Copyright | Copyright (C) 2015 Greenbone AG |
| Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |