Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2014-0103)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.123479

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2014-0103)

Resumen: The remote host is missing an update for the 'libvirt' package(s) announced via the ELSA-2014-0103 advisory.

Descripción: Summary:
The remote host is missing an update for the 'libvirt' package(s) announced via the ELSA-2014-0103 advisory.

Vulnerability Insight:
[0.10.2-29.0.1.el6_5.3]
- Replace docs/et.png in tarball with blank image

[0.10.2-29.el6_5.3]
- qemu: Avoid operations on NULL monitor if VM fails early (rhbz#1055578)
- qemu: Do not access stale data in virDomainBlockStats (CVE-2013-6458)
- qemu: Avoid using stale data in virDomainGetBlockInfo (CVE-2013-6458)
- qemu: Fix job usage in qemuDomainBlockJobImpl (CVE-2013-6458)
- qemu: Fix job usage in qemuDomainBlockCopy (rhbz#1054804)
- qemu: Fix job usage in virDomainGetBlockIoTune (CVE-2013-6458)
- Don't crash if a connection closes early (CVE-2014-1447)
- Really don't crash if a connection closes early (CVE-2014-1447)

Affected Software/OS:
'libvirt' package(s) on Oracle Linux 6.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:A/AC:H/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2013-6458
56186
http://secunia.com/advisories/56186
56446
http://secunia.com/advisories/56446
60895
http://secunia.com/advisories/60895
DSA-2846
http://www.debian.org/security/2014/dsa-2846
GLSA-201412-04
http://security.gentoo.org/glsa/glsa-201412-04.xml
RHSA-2014:0103
http://rhn.redhat.com/errata/RHSA-2014-0103.html
USN-2093-1
http://www.ubuntu.com/usn/USN-2093-1
http://libvirt.org/news.html
https://bugzilla.redhat.com/show_bug.cgi?id=1043069
openSUSE-SU-2014:0268
http://lists.opensuse.org/opensuse-updates/2014-02/msg00060.html
openSUSE-SU-2014:0270
http://lists.opensuse.org/opensuse-updates/2014-02/msg00062.html
Common Vulnerability Exposure (CVE) ID: CVE-2014-1447
Debian Security Information: DSA-2846 (Google Search)
RedHat Security Advisories: RHSA-2014:0103
http://www.securitytracker.com/id/1029695
http://secunia.com/advisories/56321
SuSE Security Announcement: openSUSE-SU-2014:0268 (Google Search)
SuSE Security Announcement: openSUSE-SU-2014:0270 (Google Search)

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.123479
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2014-0103)
Resumen:	The remote host is missing an update for the 'libvirt' package(s) announced via the ELSA-2014-0103 advisory.
Descripción:	Summary: The remote host is missing an update for the 'libvirt' package(s) announced via the ELSA-2014-0103 advisory. Vulnerability Insight: [0.10.2-29.0.1.el6_5.3] - Replace docs/et.png in tarball with blank image [0.10.2-29.el6_5.3] - qemu: Avoid operations on NULL monitor if VM fails early (rhbz#1055578) - qemu: Do not access stale data in virDomainBlockStats (CVE-2013-6458) - qemu: Avoid using stale data in virDomainGetBlockInfo (CVE-2013-6458) - qemu: Fix job usage in qemuDomainBlockJobImpl (CVE-2013-6458) - qemu: Fix job usage in qemuDomainBlockCopy (rhbz#1054804) - qemu: Fix job usage in virDomainGetBlockIoTune (CVE-2013-6458) - Don't crash if a connection closes early (CVE-2014-1447) - Really don't crash if a connection closes early (CVE-2014-1447) Affected Software/OS: 'libvirt' package(s) on Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:A/AC:H/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-6458 56186 http://secunia.com/advisories/56186 56446 http://secunia.com/advisories/56446 60895 http://secunia.com/advisories/60895 DSA-2846 http://www.debian.org/security/2014/dsa-2846 GLSA-201412-04 http://security.gentoo.org/glsa/glsa-201412-04.xml RHSA-2014:0103 http://rhn.redhat.com/errata/RHSA-2014-0103.html USN-2093-1 http://www.ubuntu.com/usn/USN-2093-1 http://libvirt.org/news.html https://bugzilla.redhat.com/show_bug.cgi?id=1043069 openSUSE-SU-2014:0268 http://lists.opensuse.org/opensuse-updates/2014-02/msg00060.html openSUSE-SU-2014:0270 http://lists.opensuse.org/opensuse-updates/2014-02/msg00062.html Common Vulnerability Exposure (CVE) ID: CVE-2014-1447 Debian Security Information: DSA-2846 (Google Search) RedHat Security Advisories: RHSA-2014:0103 http://www.securitytracker.com/id/1029695 http://secunia.com/advisories/56321 SuSE Security Announcement: openSUSE-SU-2014:0268 (Google Search) SuSE Security Announcement: openSUSE-SU-2014:0270 (Google Search)
Copyright	Copyright (C) 2015 Greenbone AG