ID de Prueba:	1.3.6.1.4.1.25623.1.0.120733
Categoría:	Amazon Linux Local Security Checks
Título:	Amazon Linux: Security Advisory (ALAS-2016-744)
Resumen:	The remote host is missing an update for the 'libgcrypt, gnupg' package(s) announced via the ALAS-2016-744 advisory.
Descripción:	Summary: The remote host is missing an update for the 'libgcrypt, gnupg' package(s) announced via the ALAS-2016-744 advisory. Vulnerability Insight: A design flaw was found in the libgcrypt PRNG (Pseudo-Random Number Generator). An attacker who can obtain the first 580 bytes of the PRNG output can trivially predict the following 20 bytes. Affected Software/OS: 'libgcrypt, gnupg' package(s) on Amazon Linux. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-6313 BugTraq ID: 92527 http://www.securityfocus.com/bid/92527 Debian Security Information: DSA-3649 (Google Search) http://www.debian.org/security/2016/dsa-3649 Debian Security Information: DSA-3650 (Google Search) http://www.debian.org/security/2016/dsa-3650 https://security.gentoo.org/glsa/201610-04 https://security.gentoo.org/glsa/201612-01 https://lists.gnupg.org/pipermail/gnupg-announce/2016q3/000395.html RedHat Security Advisories: RHSA-2016:2674 http://rhn.redhat.com/errata/RHSA-2016-2674.html http://www.securitytracker.com/id/1036635 http://www.ubuntu.com/usn/USN-3064-1 http://www.ubuntu.com/usn/USN-3065-1
Copyright	Copyright (C) 2016 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.