ID de Prueba:	1.3.6.1.4.1.25623.1.0.883074
Categoría:	CentOS Local Security Checks
Título:	CentOS Update for vim-common CESA-2019:1619 centos7
Resumen:	The remote host is missing an update for the 'vim-common'; package(s) announced via the CESA-2019:1619 advisory.
Descripción:	Summary: The remote host is missing an update for the 'vim-common' package(s) announced via the CESA-2019:1619 advisory. Vulnerability Insight: Vim (Vi IMproved) is an updated and improved version of the vi editor. Security Fix(es): * vim/neovim:':source!' command allows arbitrary command execution via modelines (CVE-2019-12735) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Affected Software/OS: 'vim-common' package(s) on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-12735 BugTraq ID: 108724 http://www.securityfocus.com/bid/108724 Bugtraq: 20190624 [SECURITY] [DSA 4467-2] vim regression update (Google Search) https://seclists.org/bugtraq/2019/Jun/33 Bugtraq: 20190724 [SECURITY] [DSA 4487-1] neovim security update (Google Search) https://seclists.org/bugtraq/2019/Jul/39 Debian Security Information: DSA-4467 (Google Search) https://www.debian.org/security/2019/dsa-4467 Debian Security Information: DSA-4487 (Google Search) https://www.debian.org/security/2019/dsa-4487 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2BMDSHTF754TITC6AQJPCS5IRIDMMIM7/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TRIRBC2YRGKPAWVRMZS4SZTGGCVRVZPR/ https://security.gentoo.org/glsa/202003-04 https://bugs.debian.org/930020 https://bugs.debian.org/930024 https://github.com/neovim/neovim/pull/10082 https://github.com/numirias/security/blob/master/doc/2019-06-04_ace-vim-neovim.md https://github.com/vim/vim/commit/53575521406739cf20bbe4e384d88e7dca11f040 https://lists.debian.org/debian-lts-announce/2019/08/msg00003.html RedHat Security Advisories: RHSA-2019:1619 https://access.redhat.com/errata/RHSA-2019:1619 RedHat Security Advisories: RHSA-2019:1774 https://access.redhat.com/errata/RHSA-2019:1774 RedHat Security Advisories: RHSA-2019:1793 https://access.redhat.com/errata/RHSA-2019:1793 RedHat Security Advisories: RHSA-2019:1947 https://access.redhat.com/errata/RHSA-2019:1947 SuSE Security Announcement: openSUSE-SU-2019:1551 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00031.html SuSE Security Announcement: openSUSE-SU-2019:1561 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00037.html SuSE Security Announcement: openSUSE-SU-2019:1562 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00036.html SuSE Security Announcement: openSUSE-SU-2019:1759 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00034.html SuSE Security Announcement: openSUSE-SU-2019:1796 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00050.html SuSE Security Announcement: openSUSE-SU-2019:1997 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00075.html https://usn.ubuntu.com/4016-1/ https://usn.ubuntu.com/4016-2/
Copyright	Copyright (C) 2019 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.