Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2013-0131)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.123751

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2013-0131)

Resumen: The remote host is missing an update for the 'gnome-vfs2' package(s) announced via the ELSA-2013-0131 advisory.

Descripción: Summary:
The remote host is missing an update for the 'gnome-vfs2' package(s) announced via the ELSA-2013-0131 advisory.

Vulnerability Insight:
[2.16.2-10.el5]
- Prevent trash applet crashing (#848822)

[2.16.2-9.el5]
- Prevent deleting items linking out of the trash (#586015)
- Do not stat every file on an ClearCase mvfs filesystem (#822817)
- Do not silently skip directory having no read permission during copy (#772307)
- Allow trashing symlink to filesystem root that does not support trashing (#621394)
- CVE-2009-2473 gnome-vfs2 embedded neon: billion laughs DoS attack (#540548)

Affected Software/OS:
'gnome-vfs2' package(s) on Oracle Linux 5.

Solution:
Please install the updated package(s).

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-2473
36371
http://secunia.com/advisories/36371
ADV-2009-2341
http://www.vupen.com/english/advisories/2009/2341
APPLE-SA-2010-11-10-1
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
FEDORA-2009-8794
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00924.html
FEDORA-2009-8815
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00945.html
MDVSA-2009:221
http://www.mandriva.com/security/advisories?name=MDVSA-2009:221
RHSA-2013:0131
http://rhn.redhat.com/errata/RHSA-2013-0131.html
SUSE-SR:2009:018
http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html
[neon] 20090818 CVE-2009-2473: fix for "billion laughs" attack against expat
http://lists.manyfish.co.uk/pipermail/neon/2009-August/001045.html
[neon] 20090818 neon: release 0.28.6 (SECURITY)
http://lists.manyfish.co.uk/pipermail/neon/2009-August/001044.html
http://support.apple.com/kb/HT4435
neon-xml-dos(52633)
https://exchange.xforce.ibmcloud.com/vulnerabilities/52633
oval:org.mitre.oval:def:9461
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9461

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.123751
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2013-0131)
Resumen:	The remote host is missing an update for the 'gnome-vfs2' package(s) announced via the ELSA-2013-0131 advisory.
Descripción:	Summary: The remote host is missing an update for the 'gnome-vfs2' package(s) announced via the ELSA-2013-0131 advisory. Vulnerability Insight: [2.16.2-10.el5] - Prevent trash applet crashing (#848822) [2.16.2-9.el5] - Prevent deleting items linking out of the trash (#586015) - Do not stat every file on an ClearCase mvfs filesystem (#822817) - Do not silently skip directory having no read permission during copy (#772307) - Allow trashing symlink to filesystem root that does not support trashing (#621394) - CVE-2009-2473 gnome-vfs2 embedded neon: billion laughs DoS attack (#540548) Affected Software/OS: 'gnome-vfs2' package(s) on Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-2473 36371 http://secunia.com/advisories/36371 ADV-2009-2341 http://www.vupen.com/english/advisories/2009/2341 APPLE-SA-2010-11-10-1 http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html FEDORA-2009-8794 https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00924.html FEDORA-2009-8815 https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00945.html MDVSA-2009:221 http://www.mandriva.com/security/advisories?name=MDVSA-2009:221 RHSA-2013:0131 http://rhn.redhat.com/errata/RHSA-2013-0131.html SUSE-SR:2009:018 http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html [neon] 20090818 CVE-2009-2473: fix for "billion laughs" attack against expat http://lists.manyfish.co.uk/pipermail/neon/2009-August/001045.html [neon] 20090818 neon: release 0.28.6 (SECURITY) http://lists.manyfish.co.uk/pipermail/neon/2009-August/001044.html http://support.apple.com/kb/HT4435 neon-xml-dos(52633) https://exchange.xforce.ibmcloud.com/vulnerabilities/52633 oval:org.mitre.oval:def:9461 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9461
Copyright	Copyright (C) 2015 Greenbone AG