Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2015-1979)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.122729

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2015-1979)

Resumen: The remote host is missing an update for the 'libreswan' package(s) announced via the ELSA-2015-1979 advisory.

Descripción: Summary:
The remote host is missing an update for the 'libreswan' package(s) announced via the ELSA-2015-1979 advisory.

Vulnerability Insight:
[3.15-5.0.1]
- add libreswan-oracle.patch to detect Oracle Linux distro

[3.15-5]
- Resolves: rhbz#1273719 libreswan FIPS test mistakenly looks for non-existent file hashes

[3.15-4]
- Resolves: rhbz#1268775 libreswan should support strictcrlpolicy alias
- Resolves: rhbz#1268776 Pluto crashes after stop when I use floating ip address
- Resolves: rhbz#1268773 Pluto crashes on INITIATOR site during 'service ipsec stop'
- Resolves: rhbz#1208022 libreswan ignores module blacklist rules
- Resolves: rhbz#1270673 ipsec does not work properly on loopback

[3.15-2]
- Resolves: rhbz#1259208 CVE-2015-3240
- Merge rhel6 and rhel7 spec into one
- Be lenient for racoon padding behaviour
- Fix seedev option to /dev/random
- Some IKEv1 PAM methods always gave 'Permission denied'
- Parser workarounds for differences in gcc/flex/bison on rhel6/rhel7
- Parser fix to allow specifying time without unit (openswan compat)
- Fix Labeled IPsec on rekeyed IPsec SA's
- Workaround for wrong padding by racoon2
- Disable NSS HW GCM to workaround rhel6 xen builders bug

Affected Software/OS:
'libreswan' package(s) on Oracle Linux 7.

Solution:
Please install the updated package(s).

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2015-3240
1033418
http://www.securitytracker.com/id/1033418
77536
http://www.securityfocus.com/bid/77536
GLSA-201603-13
https://security.gentoo.org/glsa/201603-13
RHSA-2015:1979
http://rhn.redhat.com/errata/RHSA-2015-1979.html
[Openswan Users] 20150827 Openswan 2.6.45 released
https://lists.openswan.org/pipermail/users/2015-August/023401.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
https://libreswan.org/security/CVE-2015-3240/CVE-2015-3240.txt

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.122729
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2015-1979)
Resumen:	The remote host is missing an update for the 'libreswan' package(s) announced via the ELSA-2015-1979 advisory.
Descripción:	Summary: The remote host is missing an update for the 'libreswan' package(s) announced via the ELSA-2015-1979 advisory. Vulnerability Insight: [3.15-5.0.1] - add libreswan-oracle.patch to detect Oracle Linux distro [3.15-5] - Resolves: rhbz#1273719 libreswan FIPS test mistakenly looks for non-existent file hashes [3.15-4] - Resolves: rhbz#1268775 libreswan should support strictcrlpolicy alias - Resolves: rhbz#1268776 Pluto crashes after stop when I use floating ip address - Resolves: rhbz#1268773 Pluto crashes on INITIATOR site during 'service ipsec stop' - Resolves: rhbz#1208022 libreswan ignores module blacklist rules - Resolves: rhbz#1270673 ipsec does not work properly on loopback [3.15-2] - Resolves: rhbz#1259208 CVE-2015-3240 - Merge rhel6 and rhel7 spec into one - Be lenient for racoon padding behaviour - Fix seedev option to /dev/random - Some IKEv1 PAM methods always gave 'Permission denied' - Parser workarounds for differences in gcc/flex/bison on rhel6/rhel7 - Parser fix to allow specifying time without unit (openswan compat) - Fix Labeled IPsec on rekeyed IPsec SA's - Workaround for wrong padding by racoon2 - Disable NSS HW GCM to workaround rhel6 xen builders bug Affected Software/OS: 'libreswan' package(s) on Oracle Linux 7. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-3240 1033418 http://www.securitytracker.com/id/1033418 77536 http://www.securityfocus.com/bid/77536 GLSA-201603-13 https://security.gentoo.org/glsa/201603-13 RHSA-2015:1979 http://rhn.redhat.com/errata/RHSA-2015-1979.html [Openswan Users] 20150827 Openswan 2.6.45 released https://lists.openswan.org/pipermail/users/2015-August/023401.html http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html https://libreswan.org/security/CVE-2015-3240/CVE-2015-3240.txt
Copyright	Copyright (C) 2015 Greenbone AG