Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2015-0383)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.130008

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2015-0383)

Resumen: The remote host is missing an update for the 'rpcbind' package(s) announced via the MGASA-2015-0383 advisory.

Descripción: Summary:
The remote host is missing an update for the 'rpcbind' package(s) announced via the MGASA-2015-0383 advisory.

Vulnerability Insight:
Updated rpcbind package fixes security vulnerability:

A remotely triggerable use-after-free vulnerability was found in rpcbind, a
server that converts RPC program numbers into universal addresses. A remote
attacker can take advantage of this flaw to mount a denial of service (rpcbind
crash) (CVE-2015-7236).

Affected Software/OS:
'rpcbind' package(s) on Mageia 5.

Solution:
Please install the updated package(s).

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2015-7236
BugTraq ID: 76771
http://www.securityfocus.com/bid/76771
Debian Security Information: DSA-3366 (Google Search)
http://www.debian.org/security/2015/dsa-3366
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171030.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172152.html
FreeBSD Security Advisory: FreeBSD-SA-15:24
https://security.FreeBSD.org/advisories/FreeBSD-SA-15:24.rpcbind.asc
https://security.gentoo.org/glsa/201611-17
http://www.spinics.net/lists/linux-nfs/msg53045.html
http://www.openwall.com/lists/oss-security/2015/09/17/1
http://www.openwall.com/lists/oss-security/2015/09/17/6
http://www.securitytracker.com/id/1033673
http://www.ubuntu.com/usn/USN-2756-1

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.130008
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2015-0383)
Resumen:	The remote host is missing an update for the 'rpcbind' package(s) announced via the MGASA-2015-0383 advisory.
Descripción:	Summary: The remote host is missing an update for the 'rpcbind' package(s) announced via the MGASA-2015-0383 advisory. Vulnerability Insight: Updated rpcbind package fixes security vulnerability: A remotely triggerable use-after-free vulnerability was found in rpcbind, a server that converts RPC program numbers into universal addresses. A remote attacker can take advantage of this flaw to mount a denial of service (rpcbind crash) (CVE-2015-7236). Affected Software/OS: 'rpcbind' package(s) on Mageia 5. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-7236 BugTraq ID: 76771 http://www.securityfocus.com/bid/76771 Debian Security Information: DSA-3366 (Google Search) http://www.debian.org/security/2015/dsa-3366 http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171030.html http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172152.html FreeBSD Security Advisory: FreeBSD-SA-15:24 https://security.FreeBSD.org/advisories/FreeBSD-SA-15:24.rpcbind.asc https://security.gentoo.org/glsa/201611-17 http://www.spinics.net/lists/linux-nfs/msg53045.html http://www.openwall.com/lists/oss-security/2015/09/17/1 http://www.openwall.com/lists/oss-security/2015/09/17/6 http://www.securitytracker.com/id/1033673 http://www.ubuntu.com/usn/USN-2756-1
Copyright	Copyright (C) 2015 Greenbone AG