ID de Prueba:	1.3.6.1.4.1.25623.1.0.811792
Categoría:	Red Hat Local Security Checks
Título:	RedHat Update for augeas RHSA-2017:2788-01
Resumen:	The remote host is missing an update for the 'augeas'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'augeas' package(s) announced via the referenced advisory. Vulnerability Insight: Augeas is a configuration editing tool. It parses configuration files in their native formats and transforms them into a tree. Configuration changes are made by manipulating this tree and saving it back into native config files. Security Fix(es): * A vulnerability was discovered in augeas affecting the handling of escaped strings. An attacker could send crafted strings that would cause the application using augeas to copy past the end of a buffer, leading to a crash or possible code execution. (CVE-2017-7555) This issue was discovered by Han Han (Red Hat). Affected Software/OS: augeas on Red Hat Enterprise Linux Server (v. 7) Solution: Please Install the Updated Packages. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-7555 BugTraq ID: 100378 http://www.securityfocus.com/bid/100378 Debian Security Information: DSA-3949 (Google Search) http://www.debian.org/security/2017/dsa-3949 https://github.com/hercules-team/augeas/pull/480 RedHat Security Advisories: RHSA-2017:2788 https://access.redhat.com/errata/RHSA-2017:2788 RedHat Security Advisories: RHSA-2019:2403 https://access.redhat.com/errata/RHSA-2019:2403
Copyright	Copyright (C) 2017 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.