Red Hat Local Security Checks : RedHat Security Advisory RHSA-2005:345

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.55453

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2005:345

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory RHSA-2005:345.

A bug was found in the way slocate scans the local filesystem. A carefully
prepared directory structure could cause updatedb's file system scan to
fail silently, resulting in an incomplete slocate database. The Common
Vulnerabilities and Exposures project has assigned the name CVE-2005-2499
to this issue.

Additionally this update addresses the following issues:

- - Files with a size of 2 GB and larger were not entered into the slocate
database.

- - File system type exclusions were processed only when starting updatedb
and did not reflect file systems mounted while updatedb was running
(for example, automounted file systems).

- - File system type exclusions were ignored for file systems that were
mounted to a path containing a symbolic link.

- - Databases created by slocate were owned by the slocate group even if they
were created by regular users.

Users of slocate are advised to upgrade to this updated package, which
contains backported patches and is not affected by these issues.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2005-345.html

Risk factor : Medium

CVSS Score:
2.1

Referencia Cruzada: BugTraq ID: 14640
Common Vulnerability Exposure (CVE) ID: CVE-2005-2499
1014751
http://securitytracker.com/id?1014751
14640
http://www.securityfocus.com/bid/14640
19034
http://www.osvdb.org/19034
RHSA-2005:345
http://www.redhat.com/support/errata/RHSA-2005-345.html
RHSA-2005:346
http://www.redhat.com/support/errata/RHSA-2005-346.html
RHSA-2005:747
http://www.redhat.com/support/errata/RHSA-2005-747.html
oval:org.mitre.oval:def:9538
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9538
slocate-directory-structure-dos(22316)
https://exchange.xforce.ibmcloud.com/vulnerabilities/22316

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.55453
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2005:345
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2005:345. A bug was found in the way slocate scans the local filesystem. A carefully prepared directory structure could cause updatedb's file system scan to fail silently, resulting in an incomplete slocate database. The Common Vulnerabilities and Exposures project has assigned the name CVE-2005-2499 to this issue. Additionally this update addresses the following issues: - - Files with a size of 2 GB and larger were not entered into the slocate database. - - File system type exclusions were processed only when starting updatedb and did not reflect file systems mounted while updatedb was running (for example, automounted file systems). - - File system type exclusions were ignored for file systems that were mounted to a path containing a symbolic link. - - Databases created by slocate were owned by the slocate group even if they were created by regular users. Users of slocate are advised to upgrade to this updated package, which contains backported patches and is not affected by these issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2005-345.html Risk factor : Medium CVSS Score: 2.1
Referencia Cruzada:	BugTraq ID: 14640 Common Vulnerability Exposure (CVE) ID: CVE-2005-2499 1014751 http://securitytracker.com/id?1014751 14640 http://www.securityfocus.com/bid/14640 19034 http://www.osvdb.org/19034 RHSA-2005:345 http://www.redhat.com/support/errata/RHSA-2005-345.html RHSA-2005:346 http://www.redhat.com/support/errata/RHSA-2005-346.html RHSA-2005:747 http://www.redhat.com/support/errata/RHSA-2005-747.html oval:org.mitre.oval:def:9538 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9538 slocate-directory-structure-dos(22316) https://exchange.xforce.ibmcloud.com/vulnerabilities/22316
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com