Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2013-1540)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.123532

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2013-1540)

Resumen: The remote host is missing an update for the 'cheese, control-center, ekiga, evolution, evolution-data-server, evolution-exchange, evolution-mapi, gnome-panel, gnome-python2-desktop, gtkhtml3, libgdata, nautilus-sendto, openchange, pidgin, planner, totem' package(s) announced via the ELSA-2013-1540 advisory.

Descripción: Summary:
The remote host is missing an update for the 'cheese, control-center, ekiga, evolution, evolution-data-server, evolution-exchange, evolution-mapi, gnome-panel, gnome-python2-desktop, gtkhtml3, libgdata, nautilus-sendto, openchange, pidgin, planner, totem' package(s) announced via the ELSA-2013-1540 advisory.

Vulnerability Insight:
cheese
[2.28.1-8]
- Rebuild against newer evolution-data-server.
Resolves: #973276

control-center
[2.28.1-39]
- Rebuild against newer evolution-data-server.
Resolves: #973279

ekiga
[3.2.6-4]
- Rebuild against newer evolution-data-server.
- Add patch to build break (include where needed)
Resolves: #973281

evolution
[2.32.3-30.el6]
- Update patch for RH bug #975409 (Custom message in alarm notification)
- Add patch for RH bug #1014743 (Use system timezone has no effect)
- Add patch for RH bug #1014677 (Search filter persists when changing folders)

[2.32.3-29.el6]
- Add patch for RH bug #1013543 (Freeze during migration of pre-2.24 mails)

[2.32.3-28.el6]
- Add patch for RH bug #1012399 (Fails to display task mail attachment)
- Bump evolution-data-server version requirement (for RH bug #1009426)

[2.32.3-27.el6]
- Add patch for RH bug #1009517 (Be aware of 'no-alarm-after-start' calendar capability)

[2.32.3-26.el6]
- Add patch for RH bug #1006764 (Plugin actions not updated)

[2.32.3-25.el6]
- Add patch for RH bug #1003578 (Update actions on search execute)

[2.32.3-24.el6]
- Update translations for the Exchange Web Services advertisement

[2.32.3-23.el6]
- Build evolution-devel-docs for noarch only

[2.32.3-22.el6]
- Add a devel-docs subpackage and do not ship evolution-settings (RH bug #1000323)

[2.32.3-21.el6]
- Remove bogofilter plugin from el6 (missed previous removal during rebase)

[2.32.3-20.el6]
- Update bn_IN translation

[2.32.3-19.el6]
- Show a one-time dialog on upgrade advertising Exchange Web Services.

[2.32.3-18.el6]
- Update translation patch

[2.32.3-17.el6]
- Add patch for icons in a message list Wide View

[2.32.3-16.el6]
- Add patch for translation updates

[2.32.3-15.el6]
- Update patch for RH bug #949610 (Avoid runtime warnings caused by async load)

[2.32.3-14.el6]
- Update patch for RH bug #975409 (Custom message in alarm notification)
- Add patch for RH bug #985528 (Multiple contacts remove confuses view)

[2.32.3-13.el6]
- Obsolete evolution-conduits, thus an update can be done, when it's installed
- Add patch for RH bug #981313 (a11y in the Contacts' minicard view)
- Add patch for RH bug #981257 (Save changes in addressbook backend's ensure_sources)

[2.32.3-12.el6]
- Add patch for use-after-free memory in mail account editor found by valgrind

[2.32.3-11.el6]
- Add patch for RH bug #978525 (CamelSession left with unset network-available)

[2.32.3-10.el6]
- Add patch for RH bug #956510 (Alarm notify crash and other related fixes in alarm notify)
- Update patch for RH bug #977292 (Close also evolution-alarm-notify process)

[2.32.3-9.el6]
- Add patch for RH bug #624851 (Select S/MIME encryption certificate)
- Add patch for RH bug #628174 (Copy/Paste text in calendar views)
- Add patch for RH bug #971496 (Notify user about question dialogs)
- Add patch for RH bug #977292 (--force-shutdown closes also factories)

[2.32.3-8.el6]
- Add patch ... [Please see the references for more information on the vulnerabilities]

Affected Software/OS:
'cheese, control-center, ekiga, evolution, evolution-data-server, evolution-exchange, evolution-mapi, gnome-panel, gnome-python2-desktop, gtkhtml3, libgdata, nautilus-sendto, openchange, pidgin, planner, totem' package(s) on Oracle Linux 6.

Solution:
Please install the updated package(s).

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2013-4166
http://rhn.redhat.com/errata/RHSA-2013-1540.html
http://seclists.org/oss-sec/2013/q3/191
https://bugzilla.redhat.com/show_bug.cgi?id=973728
https://git.gnome.org/browse/evolution-data-server/commit/?h=gnome-3-8&id=f7059bb37dcce485d36d769142ec9515708d8ae5
https://git.gnome.org/browse/evolution-data-server/commit/?id=5d8b92c622f6927b253762ff9310479dd3ac627d

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.123532
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2013-1540)
Resumen:	The remote host is missing an update for the 'cheese, control-center, ekiga, evolution, evolution-data-server, evolution-exchange, evolution-mapi, gnome-panel, gnome-python2-desktop, gtkhtml3, libgdata, nautilus-sendto, openchange, pidgin, planner, totem' package(s) announced via the ELSA-2013-1540 advisory.
Descripción:	Summary: The remote host is missing an update for the 'cheese, control-center, ekiga, evolution, evolution-data-server, evolution-exchange, evolution-mapi, gnome-panel, gnome-python2-desktop, gtkhtml3, libgdata, nautilus-sendto, openchange, pidgin, planner, totem' package(s) announced via the ELSA-2013-1540 advisory. Vulnerability Insight: cheese [2.28.1-8] - Rebuild against newer evolution-data-server. Resolves: #973276 control-center [2.28.1-39] - Rebuild against newer evolution-data-server. Resolves: #973279 ekiga [3.2.6-4] - Rebuild against newer evolution-data-server. - Add patch to build break (include where needed) Resolves: #973281 evolution [2.32.3-30.el6] - Update patch for RH bug #975409 (Custom message in alarm notification) - Add patch for RH bug #1014743 (Use system timezone has no effect) - Add patch for RH bug #1014677 (Search filter persists when changing folders) [2.32.3-29.el6] - Add patch for RH bug #1013543 (Freeze during migration of pre-2.24 mails) [2.32.3-28.el6] - Add patch for RH bug #1012399 (Fails to display task mail attachment) - Bump evolution-data-server version requirement (for RH bug #1009426) [2.32.3-27.el6] - Add patch for RH bug #1009517 (Be aware of 'no-alarm-after-start' calendar capability) [2.32.3-26.el6] - Add patch for RH bug #1006764 (Plugin actions not updated) [2.32.3-25.el6] - Add patch for RH bug #1003578 (Update actions on search execute) [2.32.3-24.el6] - Update translations for the Exchange Web Services advertisement [2.32.3-23.el6] - Build evolution-devel-docs for noarch only [2.32.3-22.el6] - Add a devel-docs subpackage and do not ship evolution-settings (RH bug #1000323) [2.32.3-21.el6] - Remove bogofilter plugin from el6 (missed previous removal during rebase) [2.32.3-20.el6] - Update bn_IN translation [2.32.3-19.el6] - Show a one-time dialog on upgrade advertising Exchange Web Services. [2.32.3-18.el6] - Update translation patch [2.32.3-17.el6] - Add patch for icons in a message list Wide View [2.32.3-16.el6] - Add patch for translation updates [2.32.3-15.el6] - Update patch for RH bug #949610 (Avoid runtime warnings caused by async load) [2.32.3-14.el6] - Update patch for RH bug #975409 (Custom message in alarm notification) - Add patch for RH bug #985528 (Multiple contacts remove confuses view) [2.32.3-13.el6] - Obsolete evolution-conduits, thus an update can be done, when it's installed - Add patch for RH bug #981313 (a11y in the Contacts' minicard view) - Add patch for RH bug #981257 (Save changes in addressbook backend's ensure_sources) [2.32.3-12.el6] - Add patch for use-after-free memory in mail account editor found by valgrind [2.32.3-11.el6] - Add patch for RH bug #978525 (CamelSession left with unset network-available) [2.32.3-10.el6] - Add patch for RH bug #956510 (Alarm notify crash and other related fixes in alarm notify) - Update patch for RH bug #977292 (Close also evolution-alarm-notify process) [2.32.3-9.el6] - Add patch for RH bug #624851 (Select S/MIME encryption certificate) - Add patch for RH bug #628174 (Copy/Paste text in calendar views) - Add patch for RH bug #971496 (Notify user about question dialogs) - Add patch for RH bug #977292 (--force-shutdown closes also factories) [2.32.3-8.el6] - Add patch ... [Please see the references for more information on the vulnerabilities] Affected Software/OS: 'cheese, control-center, ekiga, evolution, evolution-data-server, evolution-exchange, evolution-mapi, gnome-panel, gnome-python2-desktop, gtkhtml3, libgdata, nautilus-sendto, openchange, pidgin, planner, totem' package(s) on Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-4166 http://rhn.redhat.com/errata/RHSA-2013-1540.html http://seclists.org/oss-sec/2013/q3/191 https://bugzilla.redhat.com/show_bug.cgi?id=973728 https://git.gnome.org/browse/evolution-data-server/commit/?h=gnome-3-8&id=f7059bb37dcce485d36d769142ec9515708d8ae5 https://git.gnome.org/browse/evolution-data-server/commit/?id=5d8b92c622f6927b253762ff9310479dd3ac627d
Copyright	Copyright (C) 2015 Greenbone AG