Test Kennung:	1.3.6.1.4.1.25623.1.0.123153
Kategorie:	Oracle Linux Local Security Checks
Titel:	Oracle: Security Advisory (ELSA-2015-0716)
Zusammenfassung:	The remote host is missing an update for the 'openssl' package(s) announced via the ELSA-2015-0716 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'openssl' package(s) announced via the ELSA-2015-0716 advisory. Vulnerability Insight: [1.0.1e-42.4] - update fix for CVE-2015-0287 to what was released upstream [1.0.1e-42.3] - fix CVE-2015-0209 - potential use after free in d2i_ECPrivateKey() - fix CVE-2015-0286 - improper handling of ASN.1 boolean comparison - fix CVE-2015-0287 - ASN.1 structure reuse decoding memory corruption - fix CVE-2015-0289 - NULL dereference decoding invalid PKCS#7 data - fix CVE-2015-0292 - integer underflow in base64 decoder - fix CVE-2015-0293 - triggerable assert in SSLv2 server [1.0.1e-42.2] - fix broken error detection when unwrapping unpadded key [1.0.1e-42.1] - fix the RFC 5649 for key material that does not need padding Affected Software/OS: 'openssl' package(s) on Oracle Linux 7. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2015-0209 http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html BugTraq ID: 73239 http://www.securityfocus.com/bid/73239 Debian Security Information: DSA-3197 (Google Search) http://www.debian.org/security/2015/dsa-3197 http://lists.fedoraproject.org/pipermail/package-announce/2015-March/152844.html http://lists.fedoraproject.org/pipermail/package-announce/2015-March/152733.html http://lists.fedoraproject.org/pipermail/package-announce/2015-March/152734.html http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157177.html http://lists.fedoraproject.org/pipermail/package-announce/2015-May/156823.html FreeBSD Security Advisory: FreeBSD-SA-15:06 https://www.freebsd.org/security/advisories/FreeBSD-SA-15%3A06.openssl.asc https://security.gentoo.org/glsa/201503-11 HPdes Security Advisory: HPSBGN03306 http://marc.info/?l=bugtraq&m=142841429220765&w=2 HPdes Security Advisory: HPSBMU03380 http://marc.info/?l=bugtraq&m=143748090628601&w=2 HPdes Security Advisory: HPSBMU03397 http://marc.info/?l=bugtraq&m=144050297101809&w=2 HPdes Security Advisory: HPSBMU03409 http://marc.info/?l=bugtraq&m=144050155601375&w=2 HPdes Security Advisory: HPSBMU03413 http://marc.info/?l=bugtraq&m=144050254401665&w=2 HPdes Security Advisory: HPSBUX03334 http://marc.info/?l=bugtraq&m=143213830203296&w=2 HPdes Security Advisory: SSRT102000 http://www.mandriva.com/security/advisories?name=MDVSA-2015:062 http://www.mandriva.com/security/advisories?name=MDVSA-2015:063 RedHat Security Advisories: RHSA-2015:0715 http://rhn.redhat.com/errata/RHSA-2015-0715.html RedHat Security Advisories: RHSA-2015:0716 http://rhn.redhat.com/errata/RHSA-2015-0716.html RedHat Security Advisories: RHSA-2015:0752 http://rhn.redhat.com/errata/RHSA-2015-0752.html RedHat Security Advisories: RHSA-2016:1089 http://rhn.redhat.com/errata/RHSA-2016-1089.html RedHat Security Advisories: RHSA-2016:2957 http://rhn.redhat.com/errata/RHSA-2016-2957.html http://www.securitytracker.com/id/1031929 SuSE Security Announcement: SUSE-SU-2015:0541 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00022.html SuSE Security Announcement: openSUSE-SU-2015:0554 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-03/msg00062.html SuSE Security Announcement: openSUSE-SU-2015:1277 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00037.html SuSE Security Announcement: openSUSE-SU-2016:0640 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html http://www.ubuntu.com/usn/USN-2537-1 Common Vulnerability Exposure (CVE) ID: CVE-2015-0286 http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html BugTraq ID: 73225 http://www.securityfocus.com/bid/73225 http://www.securitytracker.com/id/1032917 SuSE Security Announcement: SUSE-SU-2015:0578 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html Common Vulnerability Exposure (CVE) ID: CVE-2015-0287 BugTraq ID: 73227 http://www.securityfocus.com/bid/73227 RedHat Security Advisories: RHSA-2015:0800 http://rhn.redhat.com/errata/RHSA-2015-0800.html SuSE Security Announcement: SUSE-SU-2016:0678 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00017.html Common Vulnerability Exposure (CVE) ID: CVE-2015-0288 BugTraq ID: 73237 http://www.securityfocus.com/bid/73237 Common Vulnerability Exposure (CVE) ID: CVE-2015-0289 BugTraq ID: 73231 http://www.securityfocus.com/bid/73231 Common Vulnerability Exposure (CVE) ID: CVE-2015-0292 BugTraq ID: 73228 http://www.securityfocus.com/bid/73228 Common Vulnerability Exposure (CVE) ID: CVE-2015-0293 BugTraq ID: 73232 http://www.securityfocus.com/bid/73232 SuSE Security Announcement: SUSE-SU-2016:0617 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00001.html SuSE Security Announcement: SUSE-SU-2016:0620 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00002.html SuSE Security Announcement: SUSE-SU-2016:0621 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00003.html SuSE Security Announcement: SUSE-SU-2016:0624 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00004.html SuSE Security Announcement: SUSE-SU-2016:0631 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00007.html SuSE Security Announcement: SUSE-SU-2016:0641 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00012.html SuSE Security Announcement: SUSE-SU-2016:1057 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00038.html SuSE Security Announcement: openSUSE-SU-2016:0628 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00006.html SuSE Security Announcement: openSUSE-SU-2016:0637 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00009.html SuSE Security Announcement: openSUSE-SU-2016:0638 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00010.html SuSE Security Announcement: openSUSE-SU-2016:0720 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00025.html
Copyright	Copyright (C) 2015 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.