Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2011-1073)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.122123

Kategorie: Oracle Linux Local Security Checks

Titel: Oracle: Security Advisory (ELSA-2011-1073)

Zusammenfassung: The remote host is missing an update for the 'bash' package(s) announced via the ELSA-2011-1073 advisory.

Beschreibung: Summary:
The remote host is missing an update for the 'bash' package(s) announced via the ELSA-2011-1073 advisory.

Vulnerability Insight:
[3.2-32]
- Don't include backup files
Resolves: #700157

[3.2-31]
- Use 'mktemp' for temporary files
Resolves: #700157

[3.2-30]
- Added man page references to systemwide .bash_logout
Resolves: #592979

[3.2-29]
- Readline glitch, when editing line with more spaces and resizing window
Resolves: #525474

[3.2-28]
- Fix the memory leak in read builtin
Resolves: #618393
- Don't append slash to non-directories
Resolves: #583919

[3.2-27]
- Test .dynamic section if has PROGBITS or NOBITS
Resolves: #484809
- Better random number generator
Resolves: #492908
- Allow to source scripts with embedded NULL chars
Resolves: #503701

[3.2-26]
- vi mode redo insert fixed
Resolves: #575076
- Don't show broken pipe messages for builtins
Resolves: #546529
- Don't include loadables in doc dir
Resolves: #663656
- Enable system-wide .bash_logout for login shells
Resolves: #592979

[3.2-25]
- Don't abort source builtin
Resolves: #448508
- Correctly place cursor
Resolves: #463880
- Minor man page clarification for trap builtin
Resolves: #504904

Affected Software/OS:
'bash' package(s) on Oracle Linux 5.

Solution:
Please install the updated package(s).

CVSS Score:
6.9

CVSS Vector:
AV:L/AC:M/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2008-5374
BugTraq ID: 32733
http://www.securityfocus.com/bid/32733
http://security.gentoo.org/glsa/glsa-201210-05.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2010:004
http://uvw.ru/report.sid.txt
http://lists.debian.org/debian-devel/2008/08/msg00347.html
http://www.redhat.com/support/errata/RHSA-2011-0261.html
http://www.redhat.com/support/errata/RHSA-2011-1073.html
http://secunia.com/advisories/43365
http://secunia.com/advisories/51086
http://www.vupen.com/english/advisories/2011/0414

Copyright Copyright (C) 2015 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.122123
Kategorie:	Oracle Linux Local Security Checks
Titel:	Oracle: Security Advisory (ELSA-2011-1073)
Zusammenfassung:	The remote host is missing an update for the 'bash' package(s) announced via the ELSA-2011-1073 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'bash' package(s) announced via the ELSA-2011-1073 advisory. Vulnerability Insight: [3.2-32] - Don't include backup files Resolves: #700157 [3.2-31] - Use 'mktemp' for temporary files Resolves: #700157 [3.2-30] - Added man page references to systemwide .bash_logout Resolves: #592979 [3.2-29] - Readline glitch, when editing line with more spaces and resizing window Resolves: #525474 [3.2-28] - Fix the memory leak in read builtin Resolves: #618393 - Don't append slash to non-directories Resolves: #583919 [3.2-27] - Test .dynamic section if has PROGBITS or NOBITS Resolves: #484809 - Better random number generator Resolves: #492908 - Allow to source scripts with embedded NULL chars Resolves: #503701 [3.2-26] - vi mode redo insert fixed Resolves: #575076 - Don't show broken pipe messages for builtins Resolves: #546529 - Don't include loadables in doc dir Resolves: #663656 - Enable system-wide .bash_logout for login shells Resolves: #592979 [3.2-25] - Don't abort source builtin Resolves: #448508 - Correctly place cursor Resolves: #463880 - Minor man page clarification for trap builtin Resolves: #504904 Affected Software/OS: 'bash' package(s) on Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 6.9 CVSS Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2008-5374 BugTraq ID: 32733 http://www.securityfocus.com/bid/32733 http://security.gentoo.org/glsa/glsa-201210-05.xml http://www.mandriva.com/security/advisories?name=MDVSA-2010:004 http://uvw.ru/report.sid.txt http://lists.debian.org/debian-devel/2008/08/msg00347.html http://www.redhat.com/support/errata/RHSA-2011-0261.html http://www.redhat.com/support/errata/RHSA-2011-1073.html http://secunia.com/advisories/43365 http://secunia.com/advisories/51086 http://www.vupen.com/english/advisories/2011/0414
Copyright	Copyright (C) 2015 Greenbone AG