CentOS Local Security Checks : CentOS Update for NetworkManager CESA-2018:3665 centos7

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.882980

Categoría: CentOS Local Security Checks

Título: CentOS Update for NetworkManager CESA-2018:3665 centos7

Resumen: The remote host is missing an update for the 'NetworkManager'; package(s) announced via the CESA-2018:3665 advisory.

Descripción: Summary:
The remote host is missing an update for the 'NetworkManager'
package(s) announced via the CESA-2018:3665 advisory.

Vulnerability Insight:
NetworkManager is a system network service that manages network devices and
connections, attempting to keep active network connectivity when available.
Its capabilities include managing Ethernet, wireless, mobile broadband
(WWAN), and PPPoE devices, as well as providing VPN integration with a
variety of different VPN services.

Security Fix(es):

* systemd: Out-of-bounds heap write in systemd-networkd dhcpv6 option
handling (CVE-2018-15688)

For more details about the security issue(s), including the impact, a CVSS
score, and other related information, refer to the CVE page(s) listed in
the References section.

Red Hat would like to thank Ubuntu Security Team for reporting this issue.
Upstream acknowledges Felix Wilhelm (Google) as the original reporter.

Affected Software/OS:
NetworkManager on CentOS 7.

Solution:
Please install the updated package(s).

CVSS Score:
5.8

CVSS Vector:
AV:A/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2018-15688
BugTraq ID: 105745
http://www.securityfocus.com/bid/105745
https://security.gentoo.org/glsa/201810-10
https://github.com/systemd/systemd/pull/10518
https://lists.debian.org/debian-lts-announce/2018/11/msg00017.html
RedHat Security Advisories: RHBA-2019:0327
https://access.redhat.com/errata/RHBA-2019:0327
RedHat Security Advisories: RHSA-2018:3665
https://access.redhat.com/errata/RHSA-2018:3665
RedHat Security Advisories: RHSA-2019:0049
https://access.redhat.com/errata/RHSA-2019:0049
https://usn.ubuntu.com/3806-1/
https://usn.ubuntu.com/3807-1/

Copyright Copyright (C) 2018 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.882980
Categoría:	CentOS Local Security Checks
Título:	CentOS Update for NetworkManager CESA-2018:3665 centos7
Resumen:	The remote host is missing an update for the 'NetworkManager'; package(s) announced via the CESA-2018:3665 advisory.
Descripción:	Summary: The remote host is missing an update for the 'NetworkManager' package(s) announced via the CESA-2018:3665 advisory. Vulnerability Insight: NetworkManager is a system network service that manages network devices and connections, attempting to keep active network connectivity when available. Its capabilities include managing Ethernet, wireless, mobile broadband (WWAN), and PPPoE devices, as well as providing VPN integration with a variety of different VPN services. Security Fix(es): * systemd: Out-of-bounds heap write in systemd-networkd dhcpv6 option handling (CVE-2018-15688) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. Red Hat would like to thank Ubuntu Security Team for reporting this issue. Upstream acknowledges Felix Wilhelm (Google) as the original reporter. Affected Software/OS: NetworkManager on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 5.8 CVSS Vector: AV:A/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2018-15688 BugTraq ID: 105745 http://www.securityfocus.com/bid/105745 https://security.gentoo.org/glsa/201810-10 https://github.com/systemd/systemd/pull/10518 https://lists.debian.org/debian-lts-announce/2018/11/msg00017.html RedHat Security Advisories: RHBA-2019:0327 https://access.redhat.com/errata/RHBA-2019:0327 RedHat Security Advisories: RHSA-2018:3665 https://access.redhat.com/errata/RHSA-2018:3665 RedHat Security Advisories: RHSA-2019:0049 https://access.redhat.com/errata/RHSA-2019:0049 https://usn.ubuntu.com/3806-1/ https://usn.ubuntu.com/3807-1/
Copyright	Copyright (C) 2018 Greenbone AG