Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2015.0156
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2015-0156)
Zusammenfassung:	The remote host is missing an update for the 'mono' package(s) announced via the MGASA-2015-0156 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'mono' package(s) announced via the MGASA-2015-0156 advisory. Vulnerability Insight: A TLS impersonation attack was discovered in Mono's TLS stack by researchers at Inria (CVE-2015-2318). During checks on the TLS stack, they have discovered two further issues which have been fixed, a vulnerability to a protocol downgrade attack (CVE-2015-2319) and SSLv2 support still being available (CVE-2013-2320). Affected Software/OS: 'mono' package(s) on Mageia 4. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2015-2318 BugTraq ID: 73253 http://www.securityfocus.com/bid/73253 Debian Security Information: DSA-3202 (Google Search) https://www.debian.org/security/2015/dsa-3202 https://mitls.org/pages/attacks/SMACK#skip http://www.openwall.com/lists/oss-security/2015/03/17/9 http://www.ubuntu.com/usn/USN-2547-1 Common Vulnerability Exposure (CVE) ID: CVE-2015-2319 BugTraq ID: 73250 http://www.securityfocus.com/bid/73250 https://mitls.org/pages/attacks/SMACK#freak Common Vulnerability Exposure (CVE) ID: CVE-2015-2320 BugTraq ID: 73256 http://www.securityfocus.com/bid/73256
Copyright	Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.