Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2013-0590)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.123682

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2013-0590)

Resumen: The remote host is missing an update for the 'nss-pam-ldapd' package(s) announced via the ELSA-2013-0590 advisory.

Descripción: Summary:
The remote host is missing an update for the 'nss-pam-ldapd' package(s) announced via the ELSA-2013-0590 advisory.

Vulnerability Insight:
[0.7.5-18.1]
- Apply upstream r1926 to resolve FD_SET array index error
- Resolves: rhbz#915361

Affected Software/OS:
'nss-pam-ldapd' package(s) on Oracle Linux 6.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2013-0288
52212
http://secunia.com/advisories/52212
52242
http://secunia.com/advisories/52242
58007
http://www.securityfocus.com/bid/58007
DSA-2628
http://www.debian.org/security/2012/dsa-2628
FEDORA-2013-2754
http://lists.fedoraproject.org/pipermail/package-announce/2013-February/099438.html
MDVSA-2013:106
http://www.mandriva.com/security/advisories?name=MDVSA-2013:106
RHSA-2013:0590
http://rhn.redhat.com/errata/RHSA-2013-0590.html
[nss-pam-ldapd-announce] 20130218 nss-pam-ldapd security advisory (CVE-2013-0288)
http://lists.arthurdejong.org/nss-pam-ldapd-announce/2013/msg00001.html
[oss-security] 20130218 CVE-2013-0288 nss-pam-ldapd: FD_SET array index error, leading to stack-based buffer overflow
http://www.openwall.com/lists/oss-security/2013/02/18/2
http://arthurdejong.org/git/nss-pam-ldapd/commit/?id=7867b93f9a7c76b96f1571cddc1de0811134bb81
http://arthurdejong.org/git/nss-pam-ldapd/commit/?id=abf03bc54032beeff95b1b8634cc005137e11f32
http://arthurdejong.org/git/nss-pam-ldapd/commit/?id=f266f05f20afe73e89c3946a7bd60bd7c5948e1b
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=690319
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-0288
https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0071
nsspamldapd-fdsetsize-bo(82175)
https://exchange.xforce.ibmcloud.com/vulnerabilities/82175
openSUSE-SU-2013:0522
http://lists.opensuse.org/opensuse-updates/2013-03/msg00087.html
openSUSE-SU-2013:0524
http://lists.opensuse.org/opensuse-updates/2013-03/msg00091.html

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.123682
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2013-0590)
Resumen:	The remote host is missing an update for the 'nss-pam-ldapd' package(s) announced via the ELSA-2013-0590 advisory.
Descripción:	Summary: The remote host is missing an update for the 'nss-pam-ldapd' package(s) announced via the ELSA-2013-0590 advisory. Vulnerability Insight: [0.7.5-18.1] - Apply upstream r1926 to resolve FD_SET array index error - Resolves: rhbz#915361 Affected Software/OS: 'nss-pam-ldapd' package(s) on Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-0288 52212 http://secunia.com/advisories/52212 52242 http://secunia.com/advisories/52242 58007 http://www.securityfocus.com/bid/58007 DSA-2628 http://www.debian.org/security/2012/dsa-2628 FEDORA-2013-2754 http://lists.fedoraproject.org/pipermail/package-announce/2013-February/099438.html MDVSA-2013:106 http://www.mandriva.com/security/advisories?name=MDVSA-2013:106 RHSA-2013:0590 http://rhn.redhat.com/errata/RHSA-2013-0590.html [nss-pam-ldapd-announce] 20130218 nss-pam-ldapd security advisory (CVE-2013-0288) http://lists.arthurdejong.org/nss-pam-ldapd-announce/2013/msg00001.html [oss-security] 20130218 CVE-2013-0288 nss-pam-ldapd: FD_SET array index error, leading to stack-based buffer overflow http://www.openwall.com/lists/oss-security/2013/02/18/2 http://arthurdejong.org/git/nss-pam-ldapd/commit/?id=7867b93f9a7c76b96f1571cddc1de0811134bb81 http://arthurdejong.org/git/nss-pam-ldapd/commit/?id=abf03bc54032beeff95b1b8634cc005137e11f32 http://arthurdejong.org/git/nss-pam-ldapd/commit/?id=f266f05f20afe73e89c3946a7bd60bd7c5948e1b http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=690319 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-0288 https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0071 nsspamldapd-fdsetsize-bo(82175) https://exchange.xforce.ibmcloud.com/vulnerabilities/82175 openSUSE-SU-2013:0522 http://lists.opensuse.org/opensuse-updates/2013-03/msg00087.html openSUSE-SU-2013:0524 http://lists.opensuse.org/opensuse-updates/2013-03/msg00091.html
Copyright	Copyright (C) 2015 Greenbone AG