Test Kennung:	1.3.6.1.4.1.25623.1.0.121239
Kategorie:	Gentoo Local Security Checks
Titel:	Gentoo Security Advisory GLSA 201406-36
Zusammenfassung:	Gentoo Linux Local Security Checks GLSA 201406-36
Beschreibung:	Summary: Gentoo Linux Local Security Checks GLSA 201406-36 Vulnerability Insight: Multiple vulnerabilities have been discovered in OpenLDAP. Please review the CVE identifiers referenced below for details. Solution: Update the affected packages to the latest available version. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2009-3767 http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036138.html http://security.gentoo.org/glsa/glsa-201406-36.xml http://marc.info/?l=oss-security&m=125198917018936&w=2 http://marc.info/?l=oss-security&m=125369675820512&w=2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11178 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7274 http://www.redhat.com/support/errata/RHSA-2010-0543.html http://www.redhat.com/support/errata/RHSA-2011-0896.html http://secunia.com/advisories/38769 http://secunia.com/advisories/40677 SuSE Security Announcement: SUSE-SR:2009:016 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00001.html http://www.vupen.com/english/advisories/2009/3056 http://www.vupen.com/english/advisories/2010/1858 Common Vulnerability Exposure (CVE) ID: CVE-2010-0211 http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html BugTraq ID: 41770 http://www.securityfocus.com/bid/41770 Bugtraq: 20110105 VMSA-2011-0001 VMware ESX third party updates for Service Console packages glibc, sudo, and openldap (Google Search) http://www.securityfocus.com/archive/1/515545/100/0/threaded http://www.redhat.com/support/errata/RHSA-2010-0542.html http://www.securitytracker.com/id?1024221 http://secunia.com/advisories/40639 http://secunia.com/advisories/40687 http://secunia.com/advisories/42787 SuSE Security Announcement: SUSE-SR:2010:014 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html http://www.vupen.com/english/advisories/2010/1849 http://www.vupen.com/english/advisories/2011/0025 Common Vulnerability Exposure (CVE) ID: CVE-2010-0212 Common Vulnerability Exposure (CVE) ID: CVE-2011-1024 1025188 http://securitytracker.com/id?1025188 43331 http://secunia.com/advisories/43331 43708 http://secunia.com/advisories/43708 43718 http://secunia.com/advisories/43718 ADV-2011-0665 http://www.vupen.com/english/advisories/2011/0665 GLSA-201406-36 MDVSA-2011:055 http://www.mandriva.com/security/advisories?name=MDVSA-2011:055 MDVSA-2011:056 http://www.mandriva.com/security/advisories?name=MDVSA-2011:056 RHSA-2011:0346 http://www.redhat.com/support/errata/RHSA-2011-0346.html RHSA-2011:0347 http://www.redhat.com/support/errata/RHSA-2011-0347.html USN-1100-1 http://www.ubuntu.com/usn/USN-1100-1 [openldap-announce] 20110212 OpenLDAP 2.4.24 available http://www.openldap.org/lists/openldap-announce/201102/msg00000.html [openldap-technical] 20100429 ppolicy master/slave issue http://www.openldap.org/lists/openldap-technical/201004/msg00247.html [oss-security] 20110224 CVE Request -- OpenLDAP -- two issues http://openwall.com/lists/oss-security/2011/02/24/12 [oss-security] 20110225 Re: CVE Request -- OpenLDAP -- two issues http://openwall.com/lists/oss-security/2011/02/25/13 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735 http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/back-ldap/chain.c.diff?r1=1.76&r2=1.77&hideattic=1&sortbydate=0 http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6607 https://bugzilla.novell.com/show_bug.cgi?id=674985 https://bugzilla.redhat.com/show_bug.cgi?id=680466 Common Vulnerability Exposure (CVE) ID: CVE-2011-1025 1025190 http://securitytracker.com/id?1025190 [oss-security] 20110225 Re: CVE Request -- OpenLDAP -- two issue http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/back-ndb/bind.cpp.diff?r1=1.5&r2=1.8 http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6661 https://bugzilla.redhat.com/show_bug.cgi?id=680472 Common Vulnerability Exposure (CVE) ID: CVE-2011-1081 1025191 http://securitytracker.com/id?1025191 [oss-security] 20110228 Re: CVE Request -- OpenLDAP -- two issues http://openwall.com/lists/oss-security/2011/02/28/1 http://openwall.com/lists/oss-security/2011/02/28/2 [oss-security] 20110301 Re: CVE Request -- OpenLDAP -- two issues http://openwall.com/lists/oss-security/2011/03/01/11 http://openwall.com/lists/oss-security/2011/03/01/15 http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/modrdn.c.diff?r1=1.170.2.8&r2=1.170.2.9 http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6768 https://bugzilla.redhat.com/show_bug.cgi?id=680975 openldap-modrdnc-dos(66239) https://exchange.xforce.ibmcloud.com/vulnerabilities/66239 Common Vulnerability Exposure (CVE) ID: CVE-2011-4079 46599 http://secunia.com/advisories/46599 50384 http://www.securityfocus.com/bid/50384 USN-1266-1 http://www.ubuntu.com/usn/USN-1266-1 [oss-security] 20111026 CVE Request: openldap2 UTF8StringNormalize() can cause a (one-byte) buffer overflow http://www.openwall.com/lists/oss-security/2011/10/26/5 [oss-security] 20111026 Re: CVE Request: openldap2 UTF8StringNormalize() can cause a (one-byte) buffer overflow http://www.openwall.com/lists/oss-security/2011/10/26/9 http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commitdiff%3Bh=507238713b71208ec4f262f312cb495a302df9e9 http://www.openldap.org/its/index.cgi/Software%20Bugs?id=7059%3Bselectid=7059 https://bugzilla.redhat.com/show_bug.cgi?id=749324 openldap-utf8stringnormalize-dos(70991) https://exchange.xforce.ibmcloud.com/vulnerabilities/70991 Common Vulnerability Exposure (CVE) ID: CVE-2012-1164 20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra https://seclists.org/bugtraq/2019/Dec/23 20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra http://seclists.org/fulldisclosure/2019/Dec/26 48372 http://secunia.com/advisories/48372 49607 http://secunia.com/advisories/49607 52404 http://www.securityfocus.com/bid/52404 MDVSA-2012:130 http://www.mandriva.com/security/advisories?name=MDVSA-2012:130 RHSA-2012:0899 http://rhn.redhat.com/errata/RHSA-2012-0899.html http://www.openldap.org/its/index.cgi/Software%20Bugs?id=7143 http://www.openldap.org/software/release/changes.html https://support.apple.com/kb/HT210788 Common Vulnerability Exposure (CVE) ID: CVE-2012-2668 1027127 http://www.securitytracker.com/id?1027127 53823 http://www.securityfocus.com/bid/53823 RHSA-2012:1151 http://rhn.redhat.com/errata/RHSA-2012-1151.html [oss-security] 20120605 CVE request: openldap does not honor TLSCipherSuite configuration option http://www.openwall.com/lists/oss-security/2012/06/05/4 [oss-security] 20120605 Re: CVE request: openldap does not honor TLSCipherSuite configuration option http://www.openwall.com/lists/oss-security/2012/06/06/1 [oss-security] 20120606 Re: CVE request: openldap does not honor TLSCipherSuite configuration option http://www.openwall.com/lists/oss-security/2012/06/06/2 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=676309 http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commitdiff%3Bh=2c2bb2e http://www.openldap.org/its/index.cgi?findid=7285 https://bugzilla.redhat.com/show_bug.cgi?id=825875 openldap-nss-weak-security(76099) https://exchange.xforce.ibmcloud.com/vulnerabilities/76099
Copyright	Copyright (C) 2015 Eero Volotinen

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.