ID de Prueba:	1.3.6.1.4.1.25623.1.0.103448
Categoría:	VMware Local Security Checks
Título:	VMware ESXi/ESX updates to third party library and ESX Service Console (VMSA-2012-0001)
Resumen:	The remote ESXi is missing one or more security related Updates from VMSA-2012-0001.
Descripción:	Summary: The remote ESXi is missing one or more security related Updates from VMSA-2012-0001. Vulnerability Insight: VMware ESXi and ESX updates to third party library and ESX Service Console address several security issues. a. ESX third party update for Service Console kernel The ESX Service Console Operating System (COS) kernel is updated to kernel-2.6.18-274.3.1.el5 to fix multiple security issues in the COS kernel. b. ESX third party update for Service Console cURL RPM The ESX Service Console (COS) curl RPM is updated to cURL-7.15.5.9 resolving a security issue. c. ESX third party update for Service Console nspr and nss RPMs The ESX Service Console (COS) nspr and nss RPMs are updated to nspr-4.8.8-1.el5_7 and nss-3.12.10-4.el5_7 respectively resolving a security issue. A Certificate Authority (CA) issued fraudulent SSL certificates and Netscape Portable Runtime (NSPR) and Network Security Services (NSS) contain the built-in tokens of this fraudulent Certificate Authority. This update renders all SSL certificates signed by the fraudulent CA as untrusted for all uses. d. ESX third party update for Service Console rpm RPMs The ESX Service Console Operating System (COS) rpm packages are updated to popt-1.10.2.3-22.el5_7.2, rpm-4.4.2.3-22.el5_7.2, rpm-libs-4.4.2.3-22.el5_7.2 and rpm-python-4.4.2.3-22.el5_7.2 which fixes multiple security issues. e. ESX third party update for Service Console samba RPMs The ESX Service Console Operating System (COS) samba packages are updated to samba-client-3.0.33-3.29.el5_7.4, samba-common-3.0.33-3.29.el5_7.4 and libsmbclient-3.0.33-3.29.el5_7.4 which fixes multiple security issues in the Samba client. f. ESX third party update for Service Console python package The ESX Service Console (COS) python package is updated to 2.4.3-44 which fixes multiple security issues. g. ESXi update to third party component python The python third party library is updated to python 2.5.6 which fixes multiple security issues. Affected Software/OS: ESXi 4.1 without patch ESXi410-201201401-SG ESXi 5.0 without patch ESXi500-201203101-SG ESXi 4.0 without patch ESXi400-201203401-SG ESX 4.1 without patches ESX410-201201401-SG, ESX410-201201402-SG, ESX410-201201404-SG, ESX410-201201405-SG, ESX410-201201406-SG, ESX410-201201407-SG Solution: Apply the missing patch(es). CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-3560 BugTraq ID: 37203 http://www.securityfocus.com/bid/37203 Debian Security Information: DSA-1953 (Google Search) http://www.debian.org/security/2009/dsa-1953 https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00370.html https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00394.html https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00413.html HPdes Security Advisory: HPSBUX02645 http://marc.info/?l=bugtraq&m=130168502603566&w=2 http://www.mandriva.com/security/advisories?name=MDVSA-2009:316 http://mail.python.org/pipermail/expat-bugs/2009-November/002846.html https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/r2295080a257bad27ea68ca0af12fc715577f9e84801eae116a33107e@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/rad2acee3ab838b52c04a0698b1728a9a43467bf365bd481c993c535d@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/reb7c64aeea604bf948467d9d1cab8ff23fa7d002be1964bcc275aae7@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f@%3Ccvs.httpd.apache.org%3E http://lists.vmware.com/pipermail/security-announce/2010/000082.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10613 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12942 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6883 http://www.redhat.com/support/errata/RHSA-2011-0896.html http://www.securitytracker.com/id?1023278 http://secunia.com/advisories/37537 http://secunia.com/advisories/38231 http://secunia.com/advisories/38794 http://secunia.com/advisories/38832 http://secunia.com/advisories/38834 http://secunia.com/advisories/39478 http://secunia.com/advisories/41701 http://secunia.com/advisories/43300 http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.486026 http://sunsolve.sun.com/search/document.do?assetkey=1-66-273630-1 SuSE Security Announcement: SUSE-SR:2010:001 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html SuSE Security Announcement: SUSE-SR:2010:011 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html SuSE Security Announcement: SUSE-SR:2010:012 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html SuSE Security Announcement: SUSE-SR:2010:013 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html SuSE Security Announcement: SUSE-SR:2010:014 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html http://www.ubuntu.com/usn/USN-890-1 http://www.ubuntu.com/usn/USN-890-6 http://www.vupen.com/english/advisories/2010/0528 http://www.vupen.com/english/advisories/2010/0896 http://www.vupen.com/english/advisories/2010/1107 http://www.vupen.com/english/advisories/2011/0359 Common Vulnerability Exposure (CVE) ID: CVE-2009-3720 https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01274.html http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051367.html http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051247.html http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051228.html http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051442.html http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051405.html http://www.mandriva.com/security/advisories?name=MDVSA-2009:211 http://www.mandriva.com/security/advisories?name=MDVSA-2009:212 http://www.mandriva.com/security/advisories?name=MDVSA-2009:215 http://www.mandriva.com/security/advisories?name=MDVSA-2009:216 http://www.mandriva.com/security/advisories?name=MDVSA-2009:217 http://www.mandriva.com/security/advisories?name=MDVSA-2009:218 http://www.mandriva.com/security/advisories?name=MDVSA-2009:219 http://www.mandriva.com/security/advisories?name=MDVSA-2009:220 http://sourceforge.net/tracker/index.php?func=detail&aid=1990430&group_id=10127&atid=110127 http://mail.python.org/pipermail/expat-bugs/2009-January/002781.html https://lists.apache.org/thread.html/rad01d817195e6cc871cb1d73b207ca326379a20a6e7f30febaf56d24@%3Ccvs.httpd.apache.org%3E https://lists.apache.org/thread.html/r476d175be0aaf4a17680ef98c5153b4d336eaef76fb2224cc94c463a@%3Ccvs.httpd.apache.org%3E http://www.openwall.com/lists/oss-security/2009/08/21/2 http://www.openwall.com/lists/oss-security/2009/08/26/4 http://www.openwall.com/lists/oss-security/2009/08/26/3 http://www.openwall.com/lists/oss-security/2009/08/27/6 http://www.openwall.com/lists/oss-security/2009/09/06/1 http://www.openwall.com/lists/oss-security/2009/10/23/2 http://www.openwall.com/lists/oss-security/2009/10/22/9 http://www.openwall.com/lists/oss-security/2009/10/22/5 http://www.openwall.com/lists/oss-security/2009/10/23/6 http://www.openwall.com/lists/oss-security/2009/10/26/3 http://www.openwall.com/lists/oss-security/2009/10/28/3 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11019 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12719 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7112 http://www.redhat.com/support/errata/RHSA-2010-0002.html http://www.securitytracker.com/id?1023160 http://secunia.com/advisories/37324 http://secunia.com/advisories/37925 http://secunia.com/advisories/38050 http://secunia.com/advisories/42326 http://secunia.com/advisories/42338 SuSE Security Announcement: SUSE-SR:2009:018 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html http://www.vupen.com/english/advisories/2010/3035 http://www.vupen.com/english/advisories/2010/3053 http://www.vupen.com/english/advisories/2010/3061 Common Vulnerability Exposure (CVE) ID: CVE-2010-0547 BugTraq ID: 38326 http://www.securityfocus.com/bid/38326 http://security.gentoo.org/glsa/glsa-201206-29.xml http://www.mandriva.com/security/advisories?name=MDVSA-2010:090 http://secunia.com/advisories/39317 SuSE Security Announcement: SUSE-SR:2010:008 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html http://www.vupen.com/english/advisories/2010/1062 Common Vulnerability Exposure (CVE) ID: CVE-2010-0787 BugTraq ID: 37992 http://www.securityfocus.com/bid/37992 BugTraq ID: 39898 http://www.securityfocus.com/bid/39898 http://lists.fedoraproject.org/pipermail/package-announce/2010-January/034444.html http://lists.fedoraproject.org/pipermail/package-announce/2010-January/034470.html http://secunia.com/advisories/38286 http://secunia.com/advisories/38308 http://secunia.com/advisories/38357 http://www.ubuntu.com/usn/USN-893-1 XForce ISS Database: sambaclient-mountcifs-symlink(55944) https://exchange.xforce.ibmcloud.com/vulnerabilities/55944 Common Vulnerability Exposure (CVE) ID: CVE-2010-1634 39937 http://secunia.com/advisories/39937 40194 http://secunia.com/advisories/40194 40370 http://www.securityfocus.com/bid/40370 42888 http://secunia.com/advisories/42888 43068 http://secunia.com/advisories/43068 50858 http://secunia.com/advisories/50858 51024 http://secunia.com/advisories/51024 51040 http://secunia.com/advisories/51040 51087 http://secunia.com/advisories/51087 ADV-2010-1448 http://www.vupen.com/english/advisories/2010/1448 ADV-2011-0122 http://www.vupen.com/english/advisories/2011/0122 ADV-2011-0212 http://www.vupen.com/english/advisories/2011/0212 APPLE-SA-2011-10-12-3 http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html FEDORA-2010-9652 http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042751.html RHSA-2011:0027 http://www.redhat.com/support/errata/RHSA-2011-0027.html SUSE-SR:2010:024 http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html SUSE-SR:2011:002 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html USN-1596-1 http://www.ubuntu.com/usn/USN-1596-1 USN-1613-1 http://www.ubuntu.com/usn/USN-1613-1 USN-1613-2 http://www.ubuntu.com/usn/USN-1613-2 USN-1616-1 http://www.ubuntu.com/usn/USN-1616-1 http://bugs.python.org/issue8674 http://support.apple.com/kb/HT5002 http://svn.python.org/view?rev=81045&view=rev http://svn.python.org/view?rev=81079&view=rev https://bugzilla.redhat.com/show_bug.cgi?id=590690 Common Vulnerability Exposure (CVE) ID: CVE-2010-2059 20110308 VMSA-2011-0004 VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm. http://www.securityfocus.com/archive/1/516909/100/0/threaded 40028 http://secunia.com/advisories/40028 65143 http://www.osvdb.org/65143 ADV-2011-0606 http://www.vupen.com/english/advisories/2011/0606 MDVSA-2010:180 http://www.mandriva.com/security/advisories?name=MDVSA-2010:180 RHSA-2010:0679 http://www.redhat.com/support/errata/RHSA-2010-0679.html SUSE-SR:2010:014 SUSE-SR:2010:017 http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html [oss-security] 20100602 CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) http://www.openwall.com/lists/oss-security/2010/06/02/2 [oss-security] 20100602 Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) http://www.openwall.com/lists/oss-security/2010/06/02/3 [oss-security] 20100603 Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) http://marc.info/?l=oss-security&m=127559059928131&w=2 http://www.openwall.com/lists/oss-security/2010/06/03/5 [oss-security] 20100604 Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775) http://www.openwall.com/lists/oss-security/2010/06/04/1 [security-announce] 20110307 VMSA-2011-0004 VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm http://lists.vmware.com/pipermail/security-announce/2011/000126.html http://distrib-coffee.ipsl.jussieu.fr/pub/mirrors/rpm/files/rpm/rpm-4.4/rpm-4.4.3.tar.gz http://rpm.org/gitweb?p=rpm.git%3Ba=commit%3Bh=ca2d6b2b484f1501eafdde02e1688409340d2383 http://www.vmware.com/security/advisories/VMSA-2011-0004.html https://bugzilla.redhat.com/show_bug.cgi?id=125517 https://bugzilla.redhat.com/show_bug.cgi?id=598775 Common Vulnerability Exposure (CVE) ID: CVE-2010-2089 BugTraq ID: 40863 http://www.securityfocus.com/bid/40863 SuSE Security Announcement: SUSE-SR:2010:024 (Google Search) SuSE Security Announcement: SUSE-SR:2011:002 (Google Search) Common Vulnerability Exposure (CVE) ID: CVE-2010-3493 BugTraq ID: 44533 http://www.securityfocus.com/bid/44533 http://www.mandriva.com/security/advisories?name=MDVSA-2010:215 http://www.mandriva.com/security/advisories?name=MDVSA-2010:216 http://bugs.python.org/issue6706 https://bugs.launchpad.net/zodb/+bug/135108 http://www.openwall.com/lists/oss-security/2010/09/09/6 http://www.openwall.com/lists/oss-security/2010/09/11/2 http://www.openwall.com/lists/oss-security/2010/09/22/3 http://www.openwall.com/lists/oss-security/2010/09/24/3 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12210 Common Vulnerability Exposure (CVE) ID: CVE-2010-4649 46073 http://www.securityfocus.com/bid/46073 RHSA-2011:0927 http://rhn.redhat.com/errata/RHSA-2011-0927.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7182afea8d1afd432a17c18162cc3fd441d0da93 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.37 https://bugzilla.redhat.com/show_bug.cgi?id=667916 Common Vulnerability Exposure (CVE) ID: CVE-2011-0695 43693 http://secunia.com/advisories/43693 46839 http://www.securityfocus.com/bid/46839 USN-1146-1 http://www.ubuntu.com/usn/USN-1146-1 [linux-rdma] 20110223 [PATCH 1/2] rdma/cm: Fix crash in request handlers http://www.spinics.net/lists/linux-rdma/msg07447.html [linux-rdma] 20110223 [PATCH 2/2] ib/cm: Bump reference count on cm_id before invoking callback http://www.spinics.net/lists/linux-rdma/msg07448.html [oss-security] 20110311 CVE-2011-0695 kernel: panic in ib_cm:cm_work_handler http://www.openwall.com/lists/oss-security/2011/03/11/1 kernel-infiniband-dos(66056) https://exchange.xforce.ibmcloud.com/vulnerabilities/66056 Common Vulnerability Exposure (CVE) ID: CVE-2011-0711 46417 http://www.securityfocus.com/bid/46417 70950 http://osvdb.org/70950 [oss-security] 20110216 CVE request - kernel: xfs infoleak http://openwall.com/lists/oss-security/2011/02/16/4 [oss-security] 20110216 Re: CVE request - kernel: xfs infoleak http://openwall.com/lists/oss-security/2011/02/16/10 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3a3675b7f23f83ca8c67c9c2b6edf707fd28d1ba http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.38-rc6-git3.log https://bugzilla.redhat.com/show_bug.cgi?id=677260 https://patchwork.kernel.org/patch/555461/ Common Vulnerability Exposure (CVE) ID: CVE-2011-0726 BugTraq ID: 47791 http://www.securityfocus.com/bid/47791 https://lkml.org/lkml/2011/3/11/380 http://www.spinics.net/lists/mm-commits/msg82726.html RedHat Security Advisories: RHSA-2011:0833 http://rhn.redhat.com/errata/RHSA-2011-0833.html Common Vulnerability Exposure (CVE) ID: CVE-2011-1015 1025489 http://securitytracker.com/id?1025489 46541 http://www.securityfocus.com/bid/46541 MDVSA-2011:096 http://www.mandriva.com/security/advisories?name=MDVSA-2011:096 [oss-security] 20110223 CVE request: Information disclosure in CGIHTTPServer from Python http://openwall.com/lists/oss-security/2011/02/23/27 [oss-security] 20110224 Re: CVE request: Information disclosure in CGIHTTPServer from Python http://openwall.com/lists/oss-security/2011/02/24/10 http://bugs.python.org/issue2254 http://hg.python.org/cpython/rev/c6c4398293bd/ http://svn.python.org/view?view=revision&revision=71303 https://bugzilla.redhat.com/show_bug.cgi?id=680094 Common Vulnerability Exposure (CVE) ID: CVE-2011-1044 BugTraq ID: 46488 http://www.securityfocus.com/bid/46488 RedHat Security Advisories: RHSA-2011:0927 XForce ISS Database: kernel-ibuverbspollcq-info-disclosure(65563) https://exchange.xforce.ibmcloud.com/vulnerabilities/65563 Common Vulnerability Exposure (CVE) ID: CVE-2011-1078 RHSA-2011:0833 RHSA-2012:1156 http://rhn.redhat.com/errata/RHSA-2012-1156.html [oss-security] 20110301 Re: CVE request: kernel: two bluetooth and one ebtables infoleaks/DoSes http://www.openwall.com/lists/oss-security/2011/03/01/10 http://downloads.avaya.com/css/P8/documents/100145416 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c4c896e1471aec3b004a693c689f60be3b17ac86 https://bugzilla.redhat.com/show_bug.cgi?id=681259 https://github.com/torvalds/linux/commit/c4c896e1471aec3b004a693c689f60be3b17ac86 Common Vulnerability Exposure (CVE) ID: CVE-2011-1079 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=43629f8f5ea32a998d06d1bb41eefa0e821ff573 http://packetstormsecurity.com/files/153799/Kernel-Live-Patch-Security-Notice-LSN-0053-1.html https://bugzilla.redhat.com/show_bug.cgi?id=681260 https://github.com/torvalds/linux/commit/43629f8f5ea32a998d06d1bb41eefa0e821ff573 Common Vulnerability Exposure (CVE) ID: CVE-2011-1080 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d846f71195d57b0bbb143382647c2c6638b04c5a https://bugzilla.redhat.com/show_bug.cgi?id=681262 https://github.com/torvalds/linux/commit/d846f71195d57b0bbb143382647c2c6638b04c5a Common Vulnerability Exposure (CVE) ID: CVE-2011-1093 46793 http://www.securityfocus.com/bid/46793 [oss-security] 20110308 CVE request: kernel: dccp: fix oops on Reset after close http://openwall.com/lists/oss-security/2011/03/08/4 [oss-security] 20110308 Re: CVE request: kernel: dccp: fix oops on Reset after close http://openwall.com/lists/oss-security/2011/03/08/19 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=720dc34bbbe9493c7bd48b2243058b4e447a929d http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38 https://bugzilla.redhat.com/show_bug.cgi?id=682954 Common Vulnerability Exposure (CVE) ID: CVE-2011-1163 1025225 http://securitytracker.com/id?1025225 20110317 [PRE-SA-2011-02] Information disclosure vulnerability in the OSF partition handling code of the Linux kernel http://www.securityfocus.com/archive/1/517050 46878 http://www.securityfocus.com/bid/46878 8189 http://securityreason.com/securityalert/8189 SUSE-SU-2015:0812 http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html [mm-commits] 20110314 + fs-partitions-osfc-corrupted-osf-partition-table-can-cause-information-disclosure.patch added to -mm tree http://www.spinics.net/lists/mm-commits/msg82737.html [oss-security] 20110315 CVE Request: kernel: fs/partitions: Corrupted OSF partition table can cause information disclosure http://openwall.com/lists/oss-security/2011/03/15/9 [oss-security] 20110315 Re: CVE Request: kernel: fs/partitions: Corrupted OSF partition table can cause information disclosure http://openwall.com/lists/oss-security/2011/03/15/14 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1eafbfeb7bdf59cfe173304c76188f3fd5f1fd05 http://www.pre-cert.de/advisories/PRE-SA-2011-02.txt https://bugzilla.redhat.com/show_bug.cgi?id=688021 Common Vulnerability Exposure (CVE) ID: CVE-2011-1166 http://wiki.xen.org/wiki/Security_Announcements#XSA-1_Host_crash_due_to_failure_to_correctly_validate_PV_kernel_execution_state. Common Vulnerability Exposure (CVE) ID: CVE-2011-1170 8278 http://securityreason.com/securityalert/8278 8282 http://securityreason.com/securityalert/8282 [netfilter-devel] 20110310 [PATCH] ipv4: netfilter: arp_tables: fix infoleak to userspace http://marc.info/?l=netfilter-devel&m=129978081009955&w=2 [oss-security] 20110318 CVE request: kernel: netfilter & econet infoleaks http://www.openwall.com/lists/oss-security/2011/03/18/15 [oss-security] 20110321 Re: CVE request: kernel: netfilter & econet infoleaks http://www.openwall.com/lists/oss-security/2011/03/21/1 http://www.openwall.com/lists/oss-security/2011/03/21/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=42eab94fff18cb1091d3501cd284d6bd6cc9c143 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39 https://bugzilla.redhat.com/show_bug.cgi?id=689321 Common Vulnerability Exposure (CVE) ID: CVE-2011-1171 8283 http://securityreason.com/securityalert/8283 [linux-kernel] 20110310 [PATCH] ipv4: netfilter: ip_tables: fix infoleak to userspace http://marc.info/?l=linux-kernel&m=129978077609894&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=78b79876761b86653df89c48a7010b5cbd41a84a https://bugzilla.redhat.com/show_bug.cgi?id=689327 Common Vulnerability Exposure (CVE) ID: CVE-2011-1172 [linux-kernel] 20110310 [PATCH] ipv6: netfilter: ip6_tables: fix infoleak to userspace http://marc.info/?l=linux-kernel&m=129978086410061&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6a8ab060779779de8aea92ce3337ca348f973f54 https://bugzilla.redhat.com/show_bug.cgi?id=689345 Common Vulnerability Exposure (CVE) ID: CVE-2011-1182 [oss-security] 20110323 Re: Linux kernel signal spoofing vulnerability (CVE request) http://www.openwall.com/lists/oss-security/2011/03/23/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=da48524eb20662618854bb3df2db01fc65f3070c https://bugzilla.redhat.com/show_bug.cgi?id=690028 https://github.com/torvalds/linux/commit/da48524eb20662618854bb3df2db01fc65f3070c Common Vulnerability Exposure (CVE) ID: CVE-2011-1494 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console http://www.securityfocus.com/archive/1/520102/100/0/threaded 46397 http://secunia.com/advisories/46397 47185 http://www.securityfocus.com/bid/47185 [linux-kernel] 20110405 [PATCH] drivers/scsi/mpt2sas: prevent heap overflows and unchecked reads http://lkml.org/lkml/2011/4/5/327 [oss-security] 20110405 CVE request: kernel: two issues in mpt2sas http://openwall.com/lists/oss-security/2011/04/05/32 [oss-security] 20110406 Re: CVE request: kernel: two issues in mpt2sas http://openwall.com/lists/oss-security/2011/04/06/2 http://www.vmware.com/security/advisories/VMSA-2011-0012.html https://bugzilla.redhat.com/show_bug.cgi?id=694021 https://patchwork.kernel.org/patch/688021/ Common Vulnerability Exposure (CVE) ID: CVE-2011-1495 Common Vulnerability Exposure (CVE) ID: CVE-2011-1521 http://openwall.com/lists/oss-security/2011/03/24/5 http://openwall.com/lists/oss-security/2011/03/28/2 http://openwall.com/lists/oss-security/2011/09/11/1 http://openwall.com/lists/oss-security/2011/09/13/2 http://openwall.com/lists/oss-security/2011/09/15/5 http://securitytracker.com/id?1025488 SuSE Security Announcement: SUSE-SR:2011:009 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html http://www.ubuntu.com/usn/USN-1592-1 Common Vulnerability Exposure (CVE) ID: CVE-2011-1573 [oss-security] 20110411 CVE request - kernel: sctp: fix to calc the INIT/INIT-ACK chunk length correctly to set http://openwall.com/lists/oss-security/2011/04/11/4 [oss-security] 20110411 Re: CVE request - kernel: sctp: fix to calc the INIT/INIT-ACK chunk length correctly to set http://openwall.com/lists/oss-security/2011/04/11/12 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a8170c35e738d62e9919ce5b109cf4ed66e95bde http://mirror.anl.gov/pub/linux/kernel/v2.6/ChangeLog-2.6.34 https://bugzilla.redhat.com/show_bug.cgi?id=695383 Common Vulnerability Exposure (CVE) ID: CVE-2011-1576 1025853 http://www.securitytracker.com/id?1025853 48907 http://www.securityfocus.com/bid/48907 RHSA-2011:1090 http://www.redhat.com/support/errata/RHSA-2011-1090.html RHSA-2011:1106 http://www.redhat.com/support/errata/RHSA-2011-1106.html https://bugzilla.redhat.com/show_bug.cgi?id=695173 Common Vulnerability Exposure (CVE) ID: CVE-2011-1577 1025355 http://securitytracker.com/id?1025355 20110413 [PRE-SA-2011-03] Denial-of-service vulnerability in EFI partition handling code of the Linux kernel http://www.securityfocus.com/archive/1/517477/100/0/threaded 47343 http://www.securityfocus.com/bid/47343 8238 http://securityreason.com/securityalert/8238 FEDORA-2011-7823 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061236.html [mm-commits] 20110412 + fs-partitions-efic-corrupted-guid-partition-tables-can-cause-kernel-oops.patch added to -mm tree http://www.spinics.net/lists/mm-commits/msg83274.html [oss-security] 20110412 CVE Request: kernel: fs/partitions: Corrupted GUID partition tables can cause kernel oops http://openwall.com/lists/oss-security/2011/04/12/17 [oss-security] 20110413 Re: CVE Request: kernel: fs/partitions: Corrupted GUID partition tables can cause kernel oops http://openwall.com/lists/oss-security/2011/04/13/1 https://bugzilla.redhat.com/show_bug.cgi?id=695976 kernel-guid-dos(66773) https://exchange.xforce.ibmcloud.com/vulnerabilities/66773 Common Vulnerability Exposure (CVE) ID: CVE-2011-1593 1025420 http://securitytracker.com/id?1025420 44164 http://secunia.com/advisories/44164 47497 http://www.securityfocus.com/bid/47497 [linux-kernel] 20110418 Re: Kernel panic (NULL ptr deref?) in find_ge_pid()/next_pidmap() (via sys_getdents or sys_readdir) http://groups.google.com/group/fa.linux.kernel/msg/4a28ecb7f755a88d?dmode=source [oss-security] 20110419 CVE request -- kernel: proc: signedness issue in next_pidmap() http://openwall.com/lists/oss-security/2011/04/19/1 [oss-security] 20110420 Re: CVE request -- kernel: proc: signedness issue in next_pidmap() http://openwall.com/lists/oss-security/2011/04/20/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c78193e9c7bcbf25b8237ad0dec82f805c4ea69b http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d8bdc59f215e62098bc5b4256fd9928bf27053a1 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.4 https://bugzilla.redhat.com/show_bug.cgi?id=697822 kernel-nextpidmap-dos(66876) https://exchange.xforce.ibmcloud.com/vulnerabilities/66876 Common Vulnerability Exposure (CVE) ID: CVE-2011-1678 http://www.mandriva.com/security/advisories?name=MDVSA-2011:148 https://bugzilla.redhat.com/show_bug.cgi?id=688980 http://openwall.com/lists/oss-security/2011/03/04/11 http://openwall.com/lists/oss-security/2011/03/04/9 http://openwall.com/lists/oss-security/2011/03/04/10 http://openwall.com/lists/oss-security/2011/03/04/12 http://openwall.com/lists/oss-security/2011/03/05/3 http://openwall.com/lists/oss-security/2011/03/05/7 http://openwall.com/lists/oss-security/2011/03/07/9 http://openwall.com/lists/oss-security/2011/03/14/16 http://openwall.com/lists/oss-security/2011/03/14/5 http://openwall.com/lists/oss-security/2011/03/14/7 http://openwall.com/lists/oss-security/2011/03/15/6 http://openwall.com/lists/oss-security/2011/03/22/4 http://openwall.com/lists/oss-security/2011/03/22/6 http://openwall.com/lists/oss-security/2011/03/31/3 http://openwall.com/lists/oss-security/2011/03/31/4 http://openwall.com/lists/oss-security/2011/04/01/2 XForce ISS Database: samba-smbfs-security-bypass(66702) https://exchange.xforce.ibmcloud.com/vulnerabilities/66702 Common Vulnerability Exposure (CVE) ID: CVE-2011-1745 47534 http://www.securityfocus.com/bid/47534 [linux-kernel] 20110414 [PATCH] char: agp: fix arbitrary kernel memory writes https://lkml.org/lkml/2011/4/14/293 [oss-security] 20110421 CVE request: kernel: buffer overflow and DoS issues in agp http://openwall.com/lists/oss-security/2011/04/21/4 [oss-security] 20110422 Re: CVE request: kernel: buffer overflow and DoS issues in agp http://openwall.com/lists/oss-security/2011/04/22/7 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=194b3da873fd334ef183806db751473512af29ce http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.5 https://bugzilla.redhat.com/show_bug.cgi?id=698996 Common Vulnerability Exposure (CVE) ID: CVE-2011-1746 47535 http://www.securityfocus.com/bid/47535 [linux-kernel] 20110414 [PATCH] char: agp: fix OOM and buffer overflow https://lkml.org/lkml/2011/4/14/294 [linux-kernel] 20110419 Re: [PATCH] char: agp: fix OOM and buffer overflow https://lkml.org/lkml/2011/4/19/400 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b522f02184b413955f3bc952e3776ce41edc6355 https://bugzilla.redhat.com/show_bug.cgi?id=698998 Common Vulnerability Exposure (CVE) ID: CVE-2011-1763 https://bugzilla.redhat.com/show_bug.cgi?id=701240 Common Vulnerability Exposure (CVE) ID: CVE-2011-1776 47796 http://www.securityfocus.com/bid/47796 8369 http://securityreason.com/securityalert/8369 [oss-security] 20110510 Re: CVE request: kernel: validate size of EFI GUID partition entries http://openwall.com/lists/oss-security/2011/05/10/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fa039d5f6b126fbd65eefa05db2f67e44df8f121 http://www.pre-cert.de/advisories/PRE-SA-2011-04.txt https://bugzilla.redhat.com/show_bug.cgi?id=703026 Common Vulnerability Exposure (CVE) ID: CVE-2011-1780 RHSA-2011:1065 http://rhn.redhat.com/errata/RHSA-2011-1065.html RHSA-2011:1163 http://rhn.redhat.com/errata/RHSA-2011-1163.html [oss-security] 20110707 CVE-2011-1780, CVE-2011-1936, kernel/xen issues http://www.openwall.com/lists/oss-security/2011/07/07/3 https://bugzilla.redhat.com/show_bug.cgi?id=702657 Common Vulnerability Exposure (CVE) ID: CVE-2011-1936 Common Vulnerability Exposure (CVE) ID: CVE-2011-2022 BugTraq ID: 47843 http://www.securityfocus.com/bid/47843 Common Vulnerability Exposure (CVE) ID: CVE-2011-2192 1025713 http://www.securitytracker.com/id?1025713 45047 http://secunia.com/advisories/45047 45067 http://secunia.com/advisories/45067 45088 http://secunia.com/advisories/45088 45144 http://secunia.com/advisories/45144 45181 http://secunia.com/advisories/45181 48256 http://secunia.com/advisories/48256 APPLE-SA-2012-02-01-1 http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html DSA-2271 http://www.debian.org/security/2011/dsa-2271 FEDORA-2011-8586 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061992.html FEDORA-2011-8640 http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062287.html GLSA-201203-02 http://security.gentoo.org/glsa/glsa-201203-02.xml MDVSA-2011:116 http://www.mandriva.com/security/advisories?name=MDVSA-2011:116 RHSA-2011:0918 http://www.redhat.com/support/errata/RHSA-2011-0918.html USN-1158-1 http://www.ubuntu.com/usn/USN-1158-1 http://curl.haxx.se/curl-gssapi-delegation.patch http://curl.haxx.se/docs/adv_20110623.html http://support.apple.com/kb/HT5130 https://bugzilla.redhat.com/show_bug.cgi?id=711454 Common Vulnerability Exposure (CVE) ID: CVE-2011-2213 HPSBGN02970 http://marc.info/?l=bugtraq&m=139447903326211&w=2 [netdev] 20110601 Re: inet_diag insufficient validation? http://article.gmane.org/gmane.linux.network/197208 [netdev] 20110601 inet_diag insufficient validation? http://article.gmane.org/gmane.linux.network/197206 [netdev] 20110603 Re: inet_diag insufficient validation? http://article.gmane.org/gmane.linux.network/197386 [netdev] 20110617 [PATCH] inet_diag: fix inet_diag_bc_audit() http://article.gmane.org/gmane.linux.network/198809 [oss-security] 20110620 CVE request: kernel: inet_diag: fix inet_diag_bc_audit() http://www.openwall.com/lists/oss-security/2011/06/20/1 [oss-security] 20110620 Re: CVE request: kernel: inet_diag: fix inet_diag_bc_audit() http://www.openwall.com/lists/oss-security/2011/06/20/13 http://www.openwall.com/lists/oss-security/2011/06/20/16 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=eeb1497277d6b1a0a34ed36b97e18f2bd7d6de0d http://patchwork.ozlabs.org/patch/100857/ http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.3 https://bugzilla.redhat.com/show_bug.cgi?id=714536 Common Vulnerability Exposure (CVE) ID: CVE-2011-2482 RHSA-2011:1212 http://rhn.redhat.com/errata/RHSA-2011-1212.html [oss-security] 20110830 kernel: CVE-2011-2482/2519 http://www.openwall.com/lists/oss-security/2011/08/30/1 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.21 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ea2bc483ff5caada7c4aa0d5fbf87d3a6590273d https://bugzilla.redhat.com/show_bug.cgi?id=714867 https://github.com/torvalds/linux/commit/ea2bc483ff5caada7c4aa0d5fbf87d3a6590273d Common Vulnerability Exposure (CVE) ID: CVE-2011-2491 [oss-security] 20110623 Re: CVE request: kernel: NLM: Don't hang forever on NLM unlock requests http://www.openwall.com/lists/oss-security/2011/06/23/6 http://ftp.osuosl.org/pub/linux/kernel/v3.0/ChangeLog-3.0 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0b760113a3a155269a3fba93a409c640031dd68f https://bugzilla.redhat.com/show_bug.cgi?id=709393 https://github.com/torvalds/linux/commit/0b760113a3a155269a3fba93a409c640031dd68f Common Vulnerability Exposure (CVE) ID: CVE-2011-2492 1025778 http://securitytracker.com/id?1025778 [linux-bluetooth] 20110508 Bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace. http://permalink.gmane.org/gmane.linux.bluez.kernel/12909 [oss-security] 20110624 CVE request: kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace http://www.openwall.com/lists/oss-security/2011/06/24/2 [oss-security] 20110624 Re: CVE request: kernel: bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace http://www.openwall.com/lists/oss-security/2011/06/24/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8d03e971cf403305217b8e62db3a2e5ad2d6263f http://www.kernel.org/pub/linux/kernel/v3.0/testing/ChangeLog-3.0-rc4 https://bugzilla.redhat.com/show_bug.cgi?id=703019 Common Vulnerability Exposure (CVE) ID: CVE-2011-2495 [oss-security] 20110627 Re: CVE request: kernel: taskstats/procfs io infoleak http://www.openwall.com/lists/oss-security/2011/06/27/1 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1d1221f375c94ef961ba8574ac4f85c8870ddd51 https://bugzilla.redhat.com/show_bug.cgi?id=716825 https://github.com/torvalds/linux/commit/1d1221f375c94ef961ba8574ac4f85c8870ddd51 Common Vulnerability Exposure (CVE) ID: CVE-2011-2517 [oss-security] 20110701 Re: CVE request: kernel: nl80211: missing check for valid SSID size in scan operations http://www.openwall.com/lists/oss-security/2011/07/01/4 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=208c72f4fe44fe09577e7975ba0e7fa0278f3d03 https://bugzilla.redhat.com/show_bug.cgi?id=718152 https://github.com/torvalds/linux/commit/208c72f4fe44fe09577e7975ba0e7fa0278f3d03 Common Vulnerability Exposure (CVE) ID: CVE-2011-2519 [oss-security] 20130830 kernel: CVE-2011-2482/2519 http://xenbits.xen.org/hg/xen-3.1-testing.hg/rev/15644 https://bugzilla.redhat.com/show_bug.cgi?id=718882 Common Vulnerability Exposure (CVE) ID: CVE-2011-2522 BugTraq ID: 48899 http://www.securityfocus.com/bid/48899 Debian Security Information: DSA-2290 (Google Search) http://www.debian.org/security/2011/dsa-2290 http://www.exploit-db.com/exploits/17577 HPdes Security Advisory: HPSBNS02701 http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c03008543 HPdes Security Advisory: HPSBUX02768 http://marc.info/?l=bugtraq&m=133527864025056&w=2 HPdes Security Advisory: SSRT100598 HPdes Security Advisory: SSRT100664 http://jvn.jp/en/jp/JVN29529126/index.html http://www.mandriva.com/security/advisories?name=MDVSA-2011:121 http://osvdb.org/74071 http://securitytracker.com/id?1025852 http://secunia.com/advisories/45393 http://secunia.com/advisories/45488 http://secunia.com/advisories/45496 http://securityreason.com/securityalert/8317 http://ubuntu.com/usn/usn-1182-1 XForce ISS Database: samba-swat-csrf(68843) https://exchange.xforce.ibmcloud.com/vulnerabilities/68843 Common Vulnerability Exposure (CVE) ID: CVE-2011-2525 [netdev] 20100521 tc: RTM_GETQDISC causes kernel OOPS http://kerneltrap.org/mailarchive/linux-netdev/2010/5/21/6277805 [oss-security] 20110712 CVE-2011-2525 kernel: kernel: net_sched: fix qdisc_notify() http://openwall.com/lists/oss-security/2011/07/12/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=53b0f08042f04813cd1a7473dacd3edfacb28eb3 http://mirror.anl.gov/pub/linux/kernel/v2.6/ChangeLog-2.6.35 https://bugzilla.redhat.com/show_bug.cgi?id=720552 Common Vulnerability Exposure (CVE) ID: CVE-2011-2689 1025776 http://securitytracker.com/id?1025776 45193 http://secunia.com/advisories/45193 48677 http://www.securityfocus.com/bid/48677 [oss-security] 20110713 CVE-2011-2689 kernel: gfs2: make sure fallocate bytes is a multiple of blksize http://www.openwall.com/lists/oss-security/2011/07/13/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6905d9e4dda6112f007e9090bca80507da158e63 http://www.kernel.org/pub/linux/kernel/v3.0/testing/ChangeLog-3.0-rc1 https://bugzilla.redhat.com/show_bug.cgi?id=720861 linux-kernel-gfs2-dos(68557) https://exchange.xforce.ibmcloud.com/vulnerabilities/68557 Common Vulnerability Exposure (CVE) ID: CVE-2011-2694 BugTraq ID: 48901 http://www.securityfocus.com/bid/48901 http://jvn.jp/en/jp/JVN63041502/index.html http://osvdb.org/74072 XForce ISS Database: samba-user-xss(68844) https://exchange.xforce.ibmcloud.com/vulnerabilities/68844 Common Vulnerability Exposure (CVE) ID: CVE-2011-2901 55082 http://secunia.com/advisories/55082 GLSA-201309-24 http://security.gentoo.org/glsa/glsa-201309-24.xml [oss-security] 20110902 Xen Security Advisory 4 (CVE-2011-2901) - Xen 3.3 vaddr validation http://www.openwall.com/lists/oss-security/2011/09/02/2 https://bugzilla.redhat.com/show_bug.cgi?id=728042 Common Vulnerability Exposure (CVE) ID: CVE-2011-3378 MDVSA-2011:143 http://www.mandriva.com/security/advisories?name=MDVSA-2011:143 RHSA-2011:1349 http://www.redhat.com/support/errata/RHSA-2011-1349.html SUSE-SU-2011:1140 http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00002.html USN-1695-1 http://www.ubuntu.com/usn/USN-1695-1 [oss-security] 20110927 rpm/librpm/rpm-python memory corruption pre-verification http://www.openwall.com/lists/oss-security/2011/09/27/3 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10691 http://rpm.org/gitweb?p=rpm.git%3Ba=commitdiff%3Bh=11a7e5d95a8ca8c7d4eaff179094afd8bb74fc3f http://rpm.org/gitweb?p=rpm.git%3Ba=commitdiff%3Bh=a48f0e20cbe2ababc88b2fc52fb7a281d6fc1656 http://rpm.org/wiki/Releases/4.9.1.2#Security https://bugzilla.redhat.com/show_bug.cgi?id=741606 https://bugzilla.redhat.com/show_bug.cgi?id=741612 openSUSE-SU-2011:1203 http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00000.html
Copyright	Copyright (C) 2012 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.