ID de Prueba:	1.3.6.1.4.1.25623.1.0.123208
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2014-3110)
Resumen:	The remote host is missing an update for the 'docker' package(s) announced via the ELSA-2014-3110 advisory.
Descripción:	Summary: The remote host is missing an update for the 'docker' package(s) announced via the ELSA-2014-3110 advisory. Vulnerability Insight: [1.3.3-1.0.1] - Rename requirement of docker-io-pkg-devel in %package devel as docker-pkg-devel - Restore SysV init scripts for Oracle Linux 6 - Require Oracle Unbreakable Enterprise Kernel Release 3 or higher - Rename as docker. - Re-enable btrfs graphdriver support [1.3.3-1] - Update source to 1.3.3 from [link moved to references] Path traversal during processing of absolute symlinks (CVE-2014-9356) Escalation of privileges during decompression of LZMA (.xz) archives (CVE-2014-9357) Affected Software/OS: 'docker' package(s) on Oracle Linux 6, Oracle Linux 7. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-9356 Bugtraq: 20141212 Docker 1.3.3 - Security Advisory [11 Dec 2014] (Google Search) http://www.securityfocus.com/archive/1/archive/1/534215/100/0/threaded Common Vulnerability Exposure (CVE) ID: CVE-2014-9357 http://www.securityfocus.com/archive/1/534215/100/0/threaded Common Vulnerability Exposure (CVE) ID: CVE-2014-9358
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.