Test ID:	1.3.6.1.4.1.25623.1.0.57187
Category:	Ubuntu Local Security Checks
Title:	Ubuntu USN-326-1 (heartbeat)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to heartbeat announced via advisory USN-326-1. A security issue affects the following Ubuntu releases: Ubuntu 5.04 Ubuntu 5.10 Ubuntu 6.06 LTS This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. Yan Rong Ge discovered that heartbeat did not set proper permissions for an allocated shared memory segment. A local attacker could exploit this to render the heartbeat service unavailable (Denial of Service). Solution: The problem can be corrected by upgrading your system to the following package versions: Ubuntu 5.04: heartbeat 1.2.3-3ubuntu1.2 Ubuntu 5.10: heartbeat 1.2.3-12ubuntu0.1 Ubuntu 6.06 LTS: heartbeat 1.2.4-2ubuntu0.1 In general, a standard system upgrade is sufficient to effect the necessary changes. https://secure1.securityspace.com/smysecure/catid.html?in=USN-326-1 Risk factor : Medium CVSS Score: 2.1
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2006-3815 BugTraq ID: 19186 http://www.securityfocus.com/bid/19186 Debian Security Information: DSA-1128 (Google Search) http://www.debian.org/security/2006/dsa-1128 http://security.gentoo.org/glsa/glsa-200608-23.xml http://www.mandriva.com/security/advisories?name=MDKSA-2006:142 http://securitytracker.com/id?1016602 http://secunia.com/advisories/21162 http://secunia.com/advisories/21231 http://secunia.com/advisories/21240 http://secunia.com/advisories/21521 http://secunia.com/advisories/21629 http://www.ubuntu.com/usn/usn-326-1 http://www.vupen.com/english/advisories/2006/2994
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.