ID de Prueba:	1.3.6.1.4.1.25623.1.0.122725
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2015-1981)
Resumen:	The remote host is missing an update for the 'nspr, nss, nss-util' package(s) announced via the ELSA-2015-1981 advisory.
Descripción:	Summary: The remote host is missing an update for the 'nspr, nss, nss-util' package(s) announced via the ELSA-2015-1981 advisory. Vulnerability Insight: nspr [4.10.8-2] - Resolves: Bug 1269360 - CVE-2015-7183 - nspr: heap-buffer overflow in PL_ARENA_ALLOCATE can lead to crash (under ASAN), potential memory corruption nss [3.19.1-5.0.1] - Added nss-vendor.patch to change vendor [3.19.1-5] - Rebuild against updated NSPR [3.19.1-4] - Sync up with the rhel-6.6 branch - Resolves: Bug 1224450 nss-util [3.19.1-2] - Resolves: Bug 1269355 - CVE-2015-7182 CVE-2015-7181 Affected Software/OS: 'nspr, nss, nss-util' package(s) on Oracle Linux 6, Oracle Linux 7. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-7181 BugTraq ID: 77416 http://www.securityfocus.com/bid/77416 BugTraq ID: 91787 http://www.securityfocus.com/bid/91787 Debian Security Information: DSA-3393 (Google Search) http://www.debian.org/security/2015/dsa-3393 Debian Security Information: DSA-3410 (Google Search) http://www.debian.org/security/2015/dsa-3410 Debian Security Information: DSA-3688 (Google Search) http://www.debian.org/security/2016/dsa-3688 https://security.gentoo.org/glsa/201512-10 https://security.gentoo.org/glsa/201605-06 http://packetstormsecurity.com/files/134268/Slackware-Security-Advisory-mozilla-nss-Updates.html RedHat Security Advisories: RHSA-2015:1980 http://rhn.redhat.com/errata/RHSA-2015-1980.html RedHat Security Advisories: RHSA-2015:1981 http://rhn.redhat.com/errata/RHSA-2015-1981.html http://www.securitytracker.com/id/1034069 http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.399753 SuSE Security Announcement: SUSE-SU-2015:1926 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00013.html SuSE Security Announcement: SUSE-SU-2015:1978 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00020.html SuSE Security Announcement: SUSE-SU-2015:1981 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00021.html SuSE Security Announcement: SUSE-SU-2015:2081 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00025.html SuSE Security Announcement: openSUSE-SU-2015:1942 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00015.html SuSE Security Announcement: openSUSE-SU-2015:2229 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-12/msg00037.html SuSE Security Announcement: openSUSE-SU-2015:2245 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-12/msg00049.html http://www.ubuntu.com/usn/USN-2785-1 http://www.ubuntu.com/usn/USN-2791-1 http://www.ubuntu.com/usn/USN-2819-1 Common Vulnerability Exposure (CVE) ID: CVE-2015-7182 Common Vulnerability Exposure (CVE) ID: CVE-2015-7183 BugTraq ID: 77415 http://www.securityfocus.com/bid/77415 Debian Security Information: DSA-3406 (Google Search) http://www.debian.org/security/2015/dsa-3406 http://www.ubuntu.com/usn/USN-2790-1
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.