Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2015-1979)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.122729

Kategorie: Oracle Linux Local Security Checks

Titel: Oracle: Security Advisory (ELSA-2015-1979)

Zusammenfassung: The remote host is missing an update for the 'libreswan' package(s) announced via the ELSA-2015-1979 advisory.

Beschreibung: Summary:
The remote host is missing an update for the 'libreswan' package(s) announced via the ELSA-2015-1979 advisory.

Vulnerability Insight:
[3.15-5.0.1]
- add libreswan-oracle.patch to detect Oracle Linux distro

[3.15-5]
- Resolves: rhbz#1273719 libreswan FIPS test mistakenly looks for non-existent file hashes

[3.15-4]
- Resolves: rhbz#1268775 libreswan should support strictcrlpolicy alias
- Resolves: rhbz#1268776 Pluto crashes after stop when I use floating ip address
- Resolves: rhbz#1268773 Pluto crashes on INITIATOR site during 'service ipsec stop'
- Resolves: rhbz#1208022 libreswan ignores module blacklist rules
- Resolves: rhbz#1270673 ipsec does not work properly on loopback

[3.15-2]
- Resolves: rhbz#1259208 CVE-2015-3240
- Merge rhel6 and rhel7 spec into one
- Be lenient for racoon padding behaviour
- Fix seedev option to /dev/random
- Some IKEv1 PAM methods always gave 'Permission denied'
- Parser workarounds for differences in gcc/flex/bison on rhel6/rhel7
- Parser fix to allow specifying time without unit (openswan compat)
- Fix Labeled IPsec on rekeyed IPsec SA's
- Workaround for wrong padding by racoon2
- Disable NSS HW GCM to workaround rhel6 xen builders bug

Affected Software/OS:
'libreswan' package(s) on Oracle Linux 7.

Solution:
Please install the updated package(s).

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2015-3240
1033418
http://www.securitytracker.com/id/1033418
77536
http://www.securityfocus.com/bid/77536
GLSA-201603-13
https://security.gentoo.org/glsa/201603-13
RHSA-2015:1979
http://rhn.redhat.com/errata/RHSA-2015-1979.html
[Openswan Users] 20150827 Openswan 2.6.45 released
https://lists.openswan.org/pipermail/users/2015-August/023401.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
https://libreswan.org/security/CVE-2015-3240/CVE-2015-3240.txt

Copyright Copyright (C) 2015 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.122729
Kategorie:	Oracle Linux Local Security Checks
Titel:	Oracle: Security Advisory (ELSA-2015-1979)
Zusammenfassung:	The remote host is missing an update for the 'libreswan' package(s) announced via the ELSA-2015-1979 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'libreswan' package(s) announced via the ELSA-2015-1979 advisory. Vulnerability Insight: [3.15-5.0.1] - add libreswan-oracle.patch to detect Oracle Linux distro [3.15-5] - Resolves: rhbz#1273719 libreswan FIPS test mistakenly looks for non-existent file hashes [3.15-4] - Resolves: rhbz#1268775 libreswan should support strictcrlpolicy alias - Resolves: rhbz#1268776 Pluto crashes after stop when I use floating ip address - Resolves: rhbz#1268773 Pluto crashes on INITIATOR site during 'service ipsec stop' - Resolves: rhbz#1208022 libreswan ignores module blacklist rules - Resolves: rhbz#1270673 ipsec does not work properly on loopback [3.15-2] - Resolves: rhbz#1259208 CVE-2015-3240 - Merge rhel6 and rhel7 spec into one - Be lenient for racoon padding behaviour - Fix seedev option to /dev/random - Some IKEv1 PAM methods always gave 'Permission denied' - Parser workarounds for differences in gcc/flex/bison on rhel6/rhel7 - Parser fix to allow specifying time without unit (openswan compat) - Fix Labeled IPsec on rekeyed IPsec SA's - Workaround for wrong padding by racoon2 - Disable NSS HW GCM to workaround rhel6 xen builders bug Affected Software/OS: 'libreswan' package(s) on Oracle Linux 7. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2015-3240 1033418 http://www.securitytracker.com/id/1033418 77536 http://www.securityfocus.com/bid/77536 GLSA-201603-13 https://security.gentoo.org/glsa/201603-13 RHSA-2015:1979 http://rhn.redhat.com/errata/RHSA-2015-1979.html [Openswan Users] 20150827 Openswan 2.6.45 released https://lists.openswan.org/pipermail/users/2015-August/023401.html http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html https://libreswan.org/security/CVE-2015-3240/CVE-2015-3240.txt
Copyright	Copyright (C) 2015 Greenbone AG