ID de Prueba:	1.3.6.1.4.1.25623.1.0.71187
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 201203-03 (puppet)
Resumen:	The remote host is missing updates announced in;advisory GLSA 201203-03.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 201203-03. Vulnerability Insight: Multiple vulnerabilities have been found in Puppet, the worst of which might allow local attackers to gain escalated privileges. Solution: All Puppet users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-admin/puppet-2.7.11' CVSS Score: 6.9 CVSS Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-3564 http://projects.reductivelabs.com/issues/1806 Common Vulnerability Exposure (CVE) ID: CVE-2010-0156 http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036083.html http://lists.fedoraproject.org/pipermail/package-announce/2010-March/036166.html http://groups.google.com/group/puppet-announce/browse_thread/thread/4401823f6cbf6087 http://groups.google.com/group/puppet-announce/browse_thread/thread/73cd1b2896d986c2 http://secunia.com/advisories/38766 SuSE Security Announcement: SUSE-SR:2010:013 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html Common Vulnerability Exposure (CVE) ID: CVE-2011-3848 Debian Security Information: DSA-2314 (Google Search) http://www.debian.org/security/2011/dsa-2314 http://secunia.com/advisories/46628 SuSE Security Announcement: openSUSE-SU-2011:1190 (Google Search) http://lists.opensuse.org/opensuse-updates/2011-10/msg00033.html http://www.ubuntu.com/usn/USN-1217-1 Common Vulnerability Exposure (CVE) ID: CVE-2011-3869 http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068093.html http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068061.html http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068053.html http://secunia.com/advisories/46458 http://www.ubuntu.com/usn/USN-1223-1 http://www.ubuntu.com/usn/USN-1223-2 Common Vulnerability Exposure (CVE) ID: CVE-2011-3870 Common Vulnerability Exposure (CVE) ID: CVE-2011-3871 Common Vulnerability Exposure (CVE) ID: CVE-2011-3872 BugTraq ID: 50356 http://www.securityfocus.com/bid/50356 http://secunia.com/advisories/46550 http://secunia.com/advisories/46578 http://secunia.com/advisories/46934 http://secunia.com/advisories/46964 http://www.ubuntu.com/usn/USN-1238-1 http://www.ubuntu.com/usn/USN-1238-2 XForce ISS Database: puppet-x509-spoofing(70970) https://exchange.xforce.ibmcloud.com/vulnerabilities/70970 Common Vulnerability Exposure (CVE) ID: CVE-2012-1053 BugTraq ID: 52158 http://www.securityfocus.com/bid/52158 Debian Security Information: DSA-2419 (Google Search) http://www.debian.org/security/2012/dsa-2419 http://projects.puppetlabs.com/issues/12457 http://projects.puppetlabs.com/issues/12458 http://projects.puppetlabs.com/issues/12459 http://www.osvdb.org/79495 http://secunia.com/advisories/48157 http://secunia.com/advisories/48161 http://secunia.com/advisories/48166 http://secunia.com/advisories/48290 SuSE Security Announcement: SUSE-SU-2012:0325 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00003.html SuSE Security Announcement: openSUSE-SU-2012:0835 (Google Search) https://hermes.opensuse.org/messages/15087408 http://ubuntu.com/usn/usn-1372-1 XForce ISS Database: puppet-forked-priv-escalation(73445) https://exchange.xforce.ibmcloud.com/vulnerabilities/73445 Common Vulnerability Exposure (CVE) ID: CVE-2012-1054 http://projects.puppetlabs.com/issues/12460 http://www.osvdb.org/79496 XForce ISS Database: puppet-k5login-type-symlink(73446) https://exchange.xforce.ibmcloud.com/vulnerabilities/73446
Copyright	Copyright (C) 2012 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.