Test Kennung:	1.3.6.1.4.1.25623.1.0.122203
Kategorie:	Oracle Linux Local Security Checks
Titel:	Oracle: Security Advisory (ELSA-2011-0412)
Zusammenfassung:	The remote host is missing an update for the 'glibc' package(s) announced via the ELSA-2011-0412 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'glibc' package(s) announced via the ELSA-2011-0412 advisory. Vulnerability Insight: [2.5-58.el5_6.2] - Avoid too much stack use in fnmatch (#681054, CVE-2011-1071) - Properly quote output of locale (#625893, CVE-2011-1095) - Don't leave empty element in rpath when skipping the first element, ignore rpath elements containing non-isolated use of when privileged (#667974, CVE-2011-0536) - Fix handling of newline in addmntent (#559579, CVE-2010-0296) [2.5-58.el5_6.1] - Don't ignore in libraries (#682991) Affected Software/OS: 'glibc' package(s) on Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0296 1024043 http://securitytracker.com/id?1024043 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console http://www.securityfocus.com/archive/1/520102/100/0/threaded 20190612 SEC Consult SA-20190612-0 :: Multiple vulnerabilities in WAGO 852 Industrial Managed Switch Series http://seclists.org/fulldisclosure/2019/Jun/18 20190613 SEC Consult SA-20190612-0 :: Multiple vulnerabilities in WAGO 852 Industrial Managed Switch Series https://seclists.org/bugtraq/2019/Jun/14 39900 http://secunia.com/advisories/39900 43830 http://secunia.com/advisories/43830 46397 http://secunia.com/advisories/46397 ADV-2010-1246 http://www.vupen.com/english/advisories/2010/1246 ADV-2011-0863 http://www.vupen.com/english/advisories/2011/0863 DSA-2058 http://www.debian.org/security/2010/dsa-2058 GLSA-201011-01 http://security.gentoo.org/glsa/glsa-201011-01.xml MDVSA-2010:111 http://www.mandriva.com/security/advisories?name=MDVSA-2010:111 MDVSA-2010:112 http://www.mandriva.com/security/advisories?name=MDVSA-2010:112 RHSA-2011:0412 http://www.redhat.com/support/errata/RHSA-2011-0412.html SUSE-SA:2010:052 https://lists.opensuse.org/opensuse-security-announce/2010-10/msg00007.html USN-944-1 http://www.ubuntu.com/usn/USN-944-1 gnuclibrary-encodenamemacro-dos(59240) https://exchange.xforce.ibmcloud.com/vulnerabilities/59240 http://frugalware.org/security/662 http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.html http://sourceware.org/git/?p=glibc.git%3Ba=commit%3Bh=ab00f4eac8f4932211259ff87be83144f5211540 http://www.vmware.com/security/advisories/VMSA-2011-0012.html https://bugzilla.redhat.com/show_bug.cgi?id=559579 Common Vulnerability Exposure (CVE) ID: CVE-2011-0536 1025289 http://securitytracker.com/id?1025289 43989 http://secunia.com/advisories/43989 DSA-2122-2 http://lists.debian.org/debian-security-announce/2011/msg00005.html MDVSA-2011:178 http://www.mandriva.com/security/advisories?name=MDVSA-2011:178 RHSA-2011:0413 http://www.redhat.com/support/errata/RHSA-2011-0413.html USN-1009-2 http://www.ubuntu.com/usn/USN-1009-2 [oss-security] 20110203 CVE request: glibc CVE-2010-3847 fix regression http://openwall.com/lists/oss-security/2011/02/01/3 [oss-security] 20110203 Re: CVE request: glibc CVE-2010-3847 fix regression http://openwall.com/lists/oss-security/2011/02/03/2 http://sourceware.org/git/?p=glibc.git%3Ba=commit%3Bh=96611391ad8823ba58405325d78cefeae5cdf699 https://bugzilla.redhat.com/show_bug.cgi?id=667974 https://launchpad.net/bugs/701783 oval:org.mitre.oval:def:13086 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13086 Common Vulnerability Exposure (CVE) ID: CVE-2011-1071 1025290 http://securitytracker.com/id?1025290 20110224 glibc and alloca() http://seclists.org/fulldisclosure/2011/Feb/635 20110226 Re: glibc and alloca() http://seclists.org/fulldisclosure/2011/Feb/644 43492 http://secunia.com/advisories/43492 46563 http://www.securityfocus.com/bid/46563 8175 http://securityreason.com/securityalert/8175 [oss-security] 20110228 Re: cve request: eglibc memory corruption http://openwall.com/lists/oss-security/2011/02/28/11 http://openwall.com/lists/oss-security/2011/02/28/15 [oss-security] 20110228 cve request: eglibc memory corruption http://openwall.com/lists/oss-security/2011/02/26/3 http://bugs.debian.org/615120 http://code.google.com/p/chromium/issues/detail?id=48733 http://scarybeastsecurity.blogspot.com/2011/02/i-got-accidental-code-execution-via.html http://sourceware.org/bugzilla/show_bug.cgi?id=11883 http://sourceware.org/git/?p=glibc.git%3Ba=commit%3Bh=f15ce4d8dc139523fe0c273580b604b2453acba6 https://bugzilla.redhat.com/show_bug.cgi?id=681054 oval:org.mitre.oval:def:12853 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12853 Common Vulnerability Exposure (CVE) ID: CVE-2011-1095 1025286 http://securitytracker.com/id?1025286 43976 http://secunia.com/advisories/43976 [oss-security] 20110308 Re: glibc locale escaping issue http://openwall.com/lists/oss-security/2011/03/08/21 http://openwall.com/lists/oss-security/2011/03/08/22 [oss-security] 20110308 glibc locale escaping issue http://openwall.com/lists/oss-security/2011/03/08/8 http://bugs.gentoo.org/show_bug.cgi?id=330923 http://sources.redhat.com/bugzilla/show_bug.cgi?id=11904 http://sourceware.org/bugzilla/show_bug.cgi?id=11904 http://sourceware.org/git/?p=glibc.git%3Ba=patch%3Bh=026373745eab50a683536d950cb7e17dc98c4259 https://bugzilla.redhat.com/show_bug.cgi?id=625893 oval:org.mitre.oval:def:12272 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12272 Common Vulnerability Exposure (CVE) ID: CVE-2011-1658 Bugtraq: 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console (Google Search) http://sourceware.org/bugzilla/show_bug.cgi?id=12393 XForce ISS Database: gnuclibrary-ldso-priv-esc(66820) https://exchange.xforce.ibmcloud.com/vulnerabilities/66820 Common Vulnerability Exposure (CVE) ID: CVE-2011-1659 http://www.mandriva.com/security/advisories?name=MDVSA-2011:179 http://www.securitytracker.com/id?1025450 http://secunia.com/advisories/44353 XForce ISS Database: gnuclibrary-fnmatch-dos(66819) https://exchange.xforce.ibmcloud.com/vulnerabilities/66819
Copyright	Copyright (C) 2015 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.