ID de Prueba:	1.3.6.1.4.1.25623.1.0.123349
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2014-3053)
Resumen:	The remote host is missing an update for the 'kernel-uek' package(s) announced via the ELSA-2014-3053 advisory.
Descripción:	Summary: The remote host is missing an update for the 'kernel-uek' package(s) announced via the ELSA-2014-3053 advisory. Vulnerability Insight: [2.6.39-400.215.6] - filter: prevent nla extensions to peek beyond the end of the message (Mathias Krause) [Orabug: 19315782] {CVE-2014-3144} {CVE-2014-3145} [2.6.39-400.215.5] - n_tty: Fix n_tty_write crash when echoing in raw mode (Peter Hurley) [Orabug: 18756449] {CVE-2014-0196} {CVE-2014-0196} Affected Software/OS: 'kernel-uek' package(s) on Oracle Linux 5, Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 6.9 CVSS Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-0196 106646 http://www.osvdb.org/106646 33516 http://www.exploit-db.com/exploits/33516 59218 http://secunia.com/advisories/59218 59262 http://secunia.com/advisories/59262 59599 http://secunia.com/advisories/59599 DSA-2926 http://www.debian.org/security/2014/dsa-2926 DSA-2928 http://www.debian.org/security/2014/dsa-2928 RHSA-2014:0512 http://rhn.redhat.com/errata/RHSA-2014-0512.html SUSE-SU-2014:0667 http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00007.html SUSE-SU-2014:0683 http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00012.html USN-2196-1 http://www.ubuntu.com/usn/USN-2196-1 USN-2197-1 http://www.ubuntu.com/usn/USN-2197-1 USN-2198-1 http://www.ubuntu.com/usn/USN-2198-1 USN-2199-1 http://www.ubuntu.com/usn/USN-2199-1 USN-2200-1 http://www.ubuntu.com/usn/USN-2200-1 USN-2201-1 http://www.ubuntu.com/usn/USN-2201-1 USN-2202-1 http://www.ubuntu.com/usn/USN-2202-1 USN-2203-1 http://www.ubuntu.com/usn/USN-2203-1 USN-2204-1 http://www.ubuntu.com/usn/USN-2204-1 [oss-security] 20140429 CVE-2014-0196: Linux kernel pty layer race condition memory corruption http://www.openwall.com/lists/oss-security/2014/05/05/6 http://bugzilla.novell.com/show_bug.cgi?id=875690 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4291086b1f081b869c6d79e5b7441633dc3ace00 http://linux.oracle.com/errata/ELSA-2014-0771.html http://pastebin.com/raw.php?i=yTSFUBgZ http://source.android.com/security/bulletin/2016-07-01.html http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15319.html https://bugzilla.redhat.com/show_bug.cgi?id=1094232 https://github.com/torvalds/linux/commit/4291086b1f081b869c6d79e5b7441633dc3ace00 Common Vulnerability Exposure (CVE) ID: CVE-2014-3144 58990 http://secunia.com/advisories/58990 59311 http://secunia.com/advisories/59311 59597 http://secunia.com/advisories/59597 60613 http://secunia.com/advisories/60613 67309 http://www.securityfocus.com/bid/67309 DSA-2949 http://www.debian.org/security/2014/dsa-2949 USN-2251-1 http://www.ubuntu.com/usn/USN-2251-1 USN-2252-1 http://www.ubuntu.com/usn/USN-2252-1 USN-2259-1 http://www.ubuntu.com/usn/USN-2259-1 USN-2261-1 http://www.ubuntu.com/usn/USN-2261-1 USN-2262-1 http://www.ubuntu.com/usn/USN-2262-1 USN-2263-1 http://www.ubuntu.com/usn/USN-2263-1 USN-2264-1 http://www.ubuntu.com/usn/USN-2264-1 [oss-security] 20140509 Re: CVE request Linux kernel: filter: prevent nla extensions to peek beyond the end of the message http://www.openwall.com/lists/oss-security/2014/05/09/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=05ab8f2647e4221cbdb3856dd7d32bd5407316b3 http://linux.oracle.com/errata/ELSA-2014-3052.html https://github.com/torvalds/linux/commit/05ab8f2647e4221cbdb3856dd7d32bd5407316b3 Common Vulnerability Exposure (CVE) ID: CVE-2014-3145 1038201 http://www.securitytracker.com/id/1038201 67321 http://www.securityfocus.com/bid/67321 https://source.android.com/security/bulletin/2017-04-01
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.