Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2013-0504)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.123708

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2013-0504)

Resumen: The remote host is missing an update for the 'dhcp' package(s) announced via the ELSA-2013-0504 advisory.

Descripción: Summary:
The remote host is missing an update for the 'dhcp' package(s) announced via the ELSA-2013-0504 advisory.

Vulnerability Insight:
[12:4.1.1-34.P1.0.1.el6]
- Added oracle-errwarn-message.patch

[12:4.1.1-34.P1]
- Reducing the expiration time for an IPv6 lease may cause the server to crash
(CVE-2012-3955, #858130)

[12:4.1.1-33.P1]
- Use getifaddrs() for interface discovery code on Linux (#803540)
- dhclient-script: do not backup&restore /etc/resolv.conf (#824622)

[12:4.1.1-32.P1]
- An error in the handling of malformed client identifiers can
cause a denial-of-service condition in affected servers. (CVE-2012-3571, #843122)
- Memory Leaks Found In ISC DHCP (CVE-2012-3954, #843122)

Affected Software/OS:
'dhcp' package(s) on Oracle Linux 6.

Solution:
Please install the updated package(s).

CVSS Score:
7.1

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2012-3955
BugTraq ID: 55530
http://www.securityfocus.com/bid/55530
Debian Security Information: DSA-2551 (Google Search)
http://www.debian.org/security/2012/dsa-2551
http://lists.fedoraproject.org/pipermail/package-announce/2012-September/086992.html
http://lists.fedoraproject.org/pipermail/package-announce/2012-October/088882.html
http://lists.fedoraproject.org/pipermail/package-announce/2012-September/088220.html
http://security.gentoo.org/glsa/glsa-201301-06.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2012:153
RedHat Security Advisories: RHSA-2013:0504
http://rhn.redhat.com/errata/RHSA-2013-0504.html
http://www.securitytracker.com/id?1027528
http://secunia.com/advisories/51318
SuSE Security Announcement: openSUSE-SU-2012:1234 (Google Search)
http://lists.opensuse.org/opensuse-updates/2012-09/msg00088.html
SuSE Security Announcement: openSUSE-SU-2012:1252 (Google Search)
http://lists.opensuse.org/opensuse-updates/2012-09/msg00103.html
SuSE Security Announcement: openSUSE-SU-2012:1254 (Google Search)
http://lists.opensuse.org/opensuse-updates/2012-09/msg00105.html
http://www.ubuntu.com/usn/USN-1571-1

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.123708
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2013-0504)
Resumen:	The remote host is missing an update for the 'dhcp' package(s) announced via the ELSA-2013-0504 advisory.
Descripción:	Summary: The remote host is missing an update for the 'dhcp' package(s) announced via the ELSA-2013-0504 advisory. Vulnerability Insight: [12:4.1.1-34.P1.0.1.el6] - Added oracle-errwarn-message.patch [12:4.1.1-34.P1] - Reducing the expiration time for an IPv6 lease may cause the server to crash (CVE-2012-3955, #858130) [12:4.1.1-33.P1] - Use getifaddrs() for interface discovery code on Linux (#803540) - dhclient-script: do not backup&restore /etc/resolv.conf (#824622) [12:4.1.1-32.P1] - An error in the handling of malformed client identifiers can cause a denial-of-service condition in affected servers. (CVE-2012-3571, #843122) - Memory Leaks Found In ISC DHCP (CVE-2012-3954, #843122) Affected Software/OS: 'dhcp' package(s) on Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 7.1 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-3955 BugTraq ID: 55530 http://www.securityfocus.com/bid/55530 Debian Security Information: DSA-2551 (Google Search) http://www.debian.org/security/2012/dsa-2551 http://lists.fedoraproject.org/pipermail/package-announce/2012-September/086992.html http://lists.fedoraproject.org/pipermail/package-announce/2012-October/088882.html http://lists.fedoraproject.org/pipermail/package-announce/2012-September/088220.html http://security.gentoo.org/glsa/glsa-201301-06.xml http://www.mandriva.com/security/advisories?name=MDVSA-2012:153 RedHat Security Advisories: RHSA-2013:0504 http://rhn.redhat.com/errata/RHSA-2013-0504.html http://www.securitytracker.com/id?1027528 http://secunia.com/advisories/51318 SuSE Security Announcement: openSUSE-SU-2012:1234 (Google Search) http://lists.opensuse.org/opensuse-updates/2012-09/msg00088.html SuSE Security Announcement: openSUSE-SU-2012:1252 (Google Search) http://lists.opensuse.org/opensuse-updates/2012-09/msg00103.html SuSE Security Announcement: openSUSE-SU-2012:1254 (Google Search) http://lists.opensuse.org/opensuse-updates/2012-09/msg00105.html http://www.ubuntu.com/usn/USN-1571-1
Copyright	Copyright (C) 2015 Greenbone AG