Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2012-0429)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.123945

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2012-0429)

Resumen: The remote host is missing an update for the 'gnutls' package(s) announced via the ELSA-2012-0429 advisory.

Descripción: Summary:
The remote host is missing an update for the 'gnutls' package(s) announced via the ELSA-2012-0429 advisory.

Vulnerability Insight:
[2.8.5-4.2]
- fix CVE-2012-1573 - security issue in packet parsing (#805432)
- fix CVE-2011-4128 - buffer overflow in gnutls_session_get_data() (#752308)

Affected Software/OS:
'gnutls' package(s) on Oracle Linux 6.

Solution:
Please install the updated package(s).

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2011-4128
http://lists.fedoraproject.org/pipermail/package-announce/2012-April/077071.html
http://www.mandriva.com/security/advisories?name=MDVSA-2012:045
http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/5596
http://openwall.com/lists/oss-security/2011/11/09/2
http://openwall.com/lists/oss-security/2011/11/09/4
RedHat Security Advisories: RHSA-2012:0429
http://rhn.redhat.com/errata/RHSA-2012-0429.html
RedHat Security Advisories: RHSA-2012:0488
http://rhn.redhat.com/errata/RHSA-2012-0488.html
RedHat Security Advisories: RHSA-2012:0531
http://rhn.redhat.com/errata/RHSA-2012-0531.html
http://secunia.com/advisories/48596
http://secunia.com/advisories/48712
http://www.ubuntu.com/usn/USN-1418-1
Common Vulnerability Exposure (CVE) ID: CVE-2012-1573
BugTraq ID: 52667
http://www.securityfocus.com/bid/52667
Bugtraq: 20120320 Mu Dynamics, Inc. Security Advisories MU-201202-01 and MU-201202-02 for GnuTLS and Libtasn1 (Google Search)
http://archives.neohapsis.com/archives/bugtraq/2012-03/0099.html
Debian Security Information: DSA-2441 (Google Search)
http://www.debian.org/security/2012/dsa-2441
http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076496.html
http://www.mandriva.com/security/advisories?name=MDVSA-2012:040
http://blog.mudynamics.com/2012/03/20/gnutls-and-libtasn1-vulns/
http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/5910
http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/5912
http://www.openwall.com/lists/oss-security/2012/03/21/4
http://www.openwall.com/lists/oss-security/2012/03/21/5
http://osvdb.org/80259
http://www.securitytracker.com/id?1026828
http://secunia.com/advisories/48488
http://secunia.com/advisories/48511
http://secunia.com/advisories/57260
SuSE Security Announcement: SUSE-SU-2014:0320 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00001.html

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.123945
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2012-0429)
Resumen:	The remote host is missing an update for the 'gnutls' package(s) announced via the ELSA-2012-0429 advisory.
Descripción:	Summary: The remote host is missing an update for the 'gnutls' package(s) announced via the ELSA-2012-0429 advisory. Vulnerability Insight: [2.8.5-4.2] - fix CVE-2012-1573 - security issue in packet parsing (#805432) - fix CVE-2011-4128 - buffer overflow in gnutls_session_get_data() (#752308) Affected Software/OS: 'gnutls' package(s) on Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-4128 http://lists.fedoraproject.org/pipermail/package-announce/2012-April/077071.html http://www.mandriva.com/security/advisories?name=MDVSA-2012:045 http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/5596 http://openwall.com/lists/oss-security/2011/11/09/2 http://openwall.com/lists/oss-security/2011/11/09/4 RedHat Security Advisories: RHSA-2012:0429 http://rhn.redhat.com/errata/RHSA-2012-0429.html RedHat Security Advisories: RHSA-2012:0488 http://rhn.redhat.com/errata/RHSA-2012-0488.html RedHat Security Advisories: RHSA-2012:0531 http://rhn.redhat.com/errata/RHSA-2012-0531.html http://secunia.com/advisories/48596 http://secunia.com/advisories/48712 http://www.ubuntu.com/usn/USN-1418-1 Common Vulnerability Exposure (CVE) ID: CVE-2012-1573 BugTraq ID: 52667 http://www.securityfocus.com/bid/52667 Bugtraq: 20120320 Mu Dynamics, Inc. Security Advisories MU-201202-01 and MU-201202-02 for GnuTLS and Libtasn1 (Google Search) http://archives.neohapsis.com/archives/bugtraq/2012-03/0099.html Debian Security Information: DSA-2441 (Google Search) http://www.debian.org/security/2012/dsa-2441 http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076496.html http://www.mandriva.com/security/advisories?name=MDVSA-2012:040 http://blog.mudynamics.com/2012/03/20/gnutls-and-libtasn1-vulns/ http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/5910 http://article.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/5912 http://www.openwall.com/lists/oss-security/2012/03/21/4 http://www.openwall.com/lists/oss-security/2012/03/21/5 http://osvdb.org/80259 http://www.securitytracker.com/id?1026828 http://secunia.com/advisories/48488 http://secunia.com/advisories/48511 http://secunia.com/advisories/57260 SuSE Security Announcement: SUSE-SU-2014:0320 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00001.html
Copyright	Copyright (C) 2015 Greenbone AG