ID de Prueba:	1.3.6.1.4.1.25623.1.0.120410
Categoría:	Amazon Linux Local Security Checks
Título:	Amazon Linux: Security Advisory (ALAS-2012-57)
Resumen:	The remote host is missing an update for the 'glibc' package(s) announced via the ALAS-2012-57 advisory.
Descripción:	Summary: The remote host is missing an update for the 'glibc' package(s) announced via the ALAS-2012-57 advisory. Vulnerability Insight: An integer overflow flaw was found in the implementation of the printf functions family. This could allow an attacker to bypass FORTIFY_SOURCE protections and execute arbitrary code using a format string flaw in an application, even though these protections are expected to limit the impact of such flaws to an application abort. (CVE-2012-0864) Affected Software/OS: 'glibc' package(s) on Amazon Linux. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-0864 52201 http://www.securityfocus.com/bid/52201 RHSA-2012:0393 http://rhn.redhat.com/errata/RHSA-2012-0393.html RHSA-2012:0397 http://rhn.redhat.com/errata/RHSA-2012-0397.html RHSA-2012:0488 http://rhn.redhat.com/errata/RHSA-2012-0488.html RHSA-2012:0531 http://rhn.redhat.com/errata/RHSA-2012-0531.html [libc-alpha] 20120202 [PATCH] vfprintf: validate nargs and positional offsets http://sourceware.org/ml/libc-alpha/2012-02/msg00023.html http://sourceware.org/git/?p=glibc.git%3Ba=commitdiff%3Bh=7c1f4834d398163d1ac8101e35e9c36fc3176e6e http://www.phrack.org/issues.html?issue=67&id=9#article https://bugzilla.redhat.com/show_bug.cgi?id=794766
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.