ID de Prueba:	1.3.6.1.4.1.25623.1.0.123021
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2015-1664)
Resumen:	The remote host is missing an update for the 'nss' package(s) announced via the ELSA-2015-1664 advisory.
Descripción:	Summary: The remote host is missing an update for the 'nss' package(s) announced via the ELSA-2015-1664 advisory. Vulnerability Insight: [3.19.1-1] - Rebase nss to 3.19.1 - Pick up upstream fix for client auth. regression caused by 3.19.1 - Revert upstream change to minimum key sizes - Remove patches that rendered obsolete by the rebase - Update existing patches on account of the rebase [3.18.0-7] - Pick up upstream patch from nss-3.19.1 - Resolves: Bug 1236954 - CVE-2015-2730 NSS: ECDSA signature validation fails to handle some signatures correctly (MFSA 2015-64) - Resolves: Bug 1236967 - CVE-2015-2721 NSS: incorrectly permitted skipping of ServerKeyExchange (MFSA 2015-71) Affected Software/OS: 'nss' package(s) on Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-2721 BugTraq ID: 75541 http://www.securityfocus.com/bid/75541 BugTraq ID: 83398 http://www.securityfocus.com/bid/83398 BugTraq ID: 91787 http://www.securityfocus.com/bid/91787 Debian Security Information: DSA-3324 (Google Search) http://www.debian.org/security/2015/dsa-3324 Debian Security Information: DSA-3336 (Google Search) http://www.debian.org/security/2015/dsa-3336 https://security.gentoo.org/glsa/201512-10 https://security.gentoo.org/glsa/201701-46 https://smacktls.com RedHat Security Advisories: RHSA-2015:1185 http://rhn.redhat.com/errata/RHSA-2015-1185.html RedHat Security Advisories: RHSA-2015:1664 http://rhn.redhat.com/errata/RHSA-2015-1664.html http://www.securitytracker.com/id/1032783 http://www.securitytracker.com/id/1032784 SuSE Security Announcement: SUSE-SU-2015:1268 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00033.html SuSE Security Announcement: SUSE-SU-2015:1269 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00034.html SuSE Security Announcement: SUSE-SU-2015:1449 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00021.html SuSE Security Announcement: openSUSE-SU-2015:1229 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00025.html SuSE Security Announcement: openSUSE-SU-2015:1266 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00031.html http://www.ubuntu.com/usn/USN-2656-1 http://www.ubuntu.com/usn/USN-2656-2 http://www.ubuntu.com/usn/USN-2672-1 http://www.ubuntu.com/usn/USN-2673-1 Common Vulnerability Exposure (CVE) ID: CVE-2015-2730 BugTraq ID: 83399 http://www.securityfocus.com/bid/83399 RedHat Security Advisories: RHSA-2015:1699 http://rhn.redhat.com/errata/RHSA-2015-1699.html
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.