ID de Prueba:	1.3.6.1.4.1.25623.1.0.871450
Categoría:	Red Hat Local Security Checks
Título:	RedHat Update for haproxy RHSA-2015:1741-01
Resumen:	The remote host is missing an update for the 'haproxy'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'haproxy' package(s) announced via the referenced advisory. Vulnerability Insight: HAProxy provides high availability, load balancing, and proxying for TCP and HTTP-based applications. An implementation error related to the memory management of request and responses was found within HAProxy's buffer_slow_realign() function. An unauthenticated remote attacker could possibly use this flaw to leak certain memory buffer contents from a past request or session. (CVE-2015-3281) All haproxy users are advised to upgrade to this updated package, which contains a backported patch to correct this issue. Affected Software/OS: haproxy on Red Hat Enterprise Linux Server (v. 7) Solution: Please Install the Updated Packages. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-3281 75554 http://www.securityfocus.com/bid/75554 DSA-3301 http://www.debian.org/security/2015/dsa-3301 RHSA-2015:1741 http://rhn.redhat.com/errata/RHSA-2015-1741.html RHSA-2015:2666 http://rhn.redhat.com/errata/RHSA-2015-2666.html SUSE-SU-2015:1663 http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00001.html USN-2668-1 http://www.ubuntu.com/usn/USN-2668-1 http://git.haproxy.org/?p=haproxy-1.5.git%3Ba=commit%3Bh=7ec765568883b2d4e5a2796adbeb492a22ec9bd4 http://www.haproxy.org/news.html openSUSE-SU-2015:1831 http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00023.html
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.