ID de Prueba:	1.3.6.1.4.1.25623.1.0.131133
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2015-0446)
Resumen:	The remote host is missing an update for the 'krb5' package(s) announced via the MGASA-2015-0446 advisory.
Descripción:	Summary: The remote host is missing an update for the 'krb5' package(s) announced via the MGASA-2015-0446 advisory. Vulnerability Insight: Updated krb5 packages fix security vulnerabilities: In any MIT krb5 release with the patches for CVE-2015-2696 applied, an application which calls gss_export_sec_context() may experience memory corruption if the context was established using the IAKERB mechanism. Historically, some vulnerabilities of this nature can be translated into remote code execution, though the necessary exploits must be tailored to the individual application and are usually quite complicated (CVE-2015-2698). Affected Software/OS: 'krb5' package(s) on Mageia 5. Solution: Please install the updated package(s). CVSS Score: 8.5 CVSS Vector: AV:N/AC:M/Au:S/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-2698 SuSE Security Announcement: openSUSE-SU-2015:2055 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-11/msg00116.html SuSE Security Announcement: openSUSE-SU-2015:2376 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-12/msg00124.html http://www.ubuntu.com/usn/USN-2810-1
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.