Red Hat Local Security Checks : RedHat Security Advisory RHSA-2012:1151

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.71449

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2012:1151

Resumen: NOSUMMARY

Descripción: Description:
The remote host is missing updates announced in
advisory RHSA-2012:1151.

OpenLDAP is an open source suite of LDAP (Lightweight Directory Access
Protocol) applications and development tools.

It was found that the OpenLDAP server daemon ignored olcTLSCipherSuite
settings. This resulted in the default cipher suite always being used,
which could lead to weaker than expected ciphers being accepted during
Transport Layer Security (TLS) negotiation with OpenLDAP clients.
(CVE-2012-2668)

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2012-1151.html

Risk factor : Low

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2012-2668
1027127
http://www.securitytracker.com/id?1027127
20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra
https://seclists.org/bugtraq/2019/Dec/23
20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra
http://seclists.org/fulldisclosure/2019/Dec/26
53823
http://www.securityfocus.com/bid/53823
GLSA-201406-36
http://security.gentoo.org/glsa/glsa-201406-36.xml
RHSA-2012:1151
http://rhn.redhat.com/errata/RHSA-2012-1151.html
[oss-security] 20120605 CVE request: openldap does not honor TLSCipherSuite configuration option
http://www.openwall.com/lists/oss-security/2012/06/05/4
[oss-security] 20120605 Re: CVE request: openldap does not honor TLSCipherSuite configuration option
http://www.openwall.com/lists/oss-security/2012/06/06/1
[oss-security] 20120606 Re: CVE request: openldap does not honor TLSCipherSuite configuration option
http://www.openwall.com/lists/oss-security/2012/06/06/2
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=676309
http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commitdiff%3Bh=2c2bb2e
http://www.openldap.org/its/index.cgi?findid=7285
https://bugzilla.redhat.com/show_bug.cgi?id=825875
https://support.apple.com/kb/HT210788
openldap-nss-weak-security(76099)
https://exchange.xforce.ibmcloud.com/vulnerabilities/76099

Copyright Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.71449
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2012:1151
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2012:1151. OpenLDAP is an open source suite of LDAP (Lightweight Directory Access Protocol) applications and development tools. It was found that the OpenLDAP server daemon ignored olcTLSCipherSuite settings. This resulted in the default cipher suite always being used, which could lead to weaker than expected ciphers being accepted during Transport Layer Security (TLS) negotiation with OpenLDAP clients. (CVE-2012-2668) Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2012-1151.html Risk factor : Low
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-2668 1027127 http://www.securitytracker.com/id?1027127 20191211 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra https://seclists.org/bugtraq/2019/Dec/23 20191213 APPLE-SA-2019-12-10-3 macOS Catalina 10.15.2, Security Update 2019-002 Mojave, Security Update 2019-007 High Sierra http://seclists.org/fulldisclosure/2019/Dec/26 53823 http://www.securityfocus.com/bid/53823 GLSA-201406-36 http://security.gentoo.org/glsa/glsa-201406-36.xml RHSA-2012:1151 http://rhn.redhat.com/errata/RHSA-2012-1151.html [oss-security] 20120605 CVE request: openldap does not honor TLSCipherSuite configuration option http://www.openwall.com/lists/oss-security/2012/06/05/4 [oss-security] 20120605 Re: CVE request: openldap does not honor TLSCipherSuite configuration option http://www.openwall.com/lists/oss-security/2012/06/06/1 [oss-security] 20120606 Re: CVE request: openldap does not honor TLSCipherSuite configuration option http://www.openwall.com/lists/oss-security/2012/06/06/2 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=676309 http://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commitdiff%3Bh=2c2bb2e http://www.openldap.org/its/index.cgi?findid=7285 https://bugzilla.redhat.com/show_bug.cgi?id=825875 https://support.apple.com/kb/HT210788 openldap-nss-weak-security(76099) https://exchange.xforce.ibmcloud.com/vulnerabilities/76099
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com