Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2014-0122)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2014.0122

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2014-0122)

Resumen: The remote host is missing an update for the 'net-snmp' package(s) announced via the MGASA-2014-0122 advisory.

Descripción: Summary:
The remote host is missing an update for the 'net-snmp' package(s) announced via the MGASA-2014-0122 advisory.

Vulnerability Insight:
Updated net-snmp packages fix security vulnerabilities:

Remotely exploitable denial of service vulnerability in Net-SNMP, in the
Linux implementation of the ICMP-MIB, making the SNMP agent vulnerable if it
is making use of the ICMP-MIB table objects (CVE-2014-2284).

Remotely exploitable denial of service vulnerability in Net-SNMP, in
snmptrapd, due to how it handles trap requests with an empty community string
when the perl handler is enabled (CVE-2014-2285).

Affected Software/OS:
'net-snmp' package(s) on Mageia 3, Mageia 4.

Solution:
Please install the updated package(s).

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2014-2284
http://www.gentoo.org/security/en/glsa/glsa-201409-02.xml
http://sourceforge.net/p/net-snmp/code/ci/a1fd64716f6794c55c34d77e618210238a73bfa1/
http://comments.gmane.org/gmane.comp.security.oss.general/12284
RedHat Security Advisories: RHSA-2014:0321
http://rhn.redhat.com/errata/RHSA-2014-0321.html
http://secunia.com/advisories/57124
http://secunia.com/advisories/57526
http://secunia.com/advisories/57583
http://secunia.com/advisories/57870
http://secunia.com/advisories/59974
SuSE Security Announcement: openSUSE-SU-2014:0398 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-03/msg00060.html
SuSE Security Announcement: openSUSE-SU-2014:0399 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-03/msg00061.html
http://www.ubuntu.com/usn/USN-2166-1
Common Vulnerability Exposure (CVE) ID: CVE-2014-2285
http://www.nntp.perl.org/group/perl.perl5.porters/2006/09/msg116250.html
RedHat Security Advisories: RHSA-2014:0322
https://rhn.redhat.com/errata/RHSA-2014-0322.html

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2014.0122
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2014-0122)
Resumen:	The remote host is missing an update for the 'net-snmp' package(s) announced via the MGASA-2014-0122 advisory.
Descripción:	Summary: The remote host is missing an update for the 'net-snmp' package(s) announced via the MGASA-2014-0122 advisory. Vulnerability Insight: Updated net-snmp packages fix security vulnerabilities: Remotely exploitable denial of service vulnerability in Net-SNMP, in the Linux implementation of the ICMP-MIB, making the SNMP agent vulnerable if it is making use of the ICMP-MIB table objects (CVE-2014-2284). Remotely exploitable denial of service vulnerability in Net-SNMP, in snmptrapd, due to how it handles trap requests with an empty community string when the perl handler is enabled (CVE-2014-2285). Affected Software/OS: 'net-snmp' package(s) on Mageia 3, Mageia 4. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-2284 http://www.gentoo.org/security/en/glsa/glsa-201409-02.xml http://sourceforge.net/p/net-snmp/code/ci/a1fd64716f6794c55c34d77e618210238a73bfa1/ http://comments.gmane.org/gmane.comp.security.oss.general/12284 RedHat Security Advisories: RHSA-2014:0321 http://rhn.redhat.com/errata/RHSA-2014-0321.html http://secunia.com/advisories/57124 http://secunia.com/advisories/57526 http://secunia.com/advisories/57583 http://secunia.com/advisories/57870 http://secunia.com/advisories/59974 SuSE Security Announcement: openSUSE-SU-2014:0398 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-03/msg00060.html SuSE Security Announcement: openSUSE-SU-2014:0399 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-03/msg00061.html http://www.ubuntu.com/usn/USN-2166-1 Common Vulnerability Exposure (CVE) ID: CVE-2014-2285 http://www.nntp.perl.org/group/perl.perl5.porters/2006/09/msg116250.html RedHat Security Advisories: RHSA-2014:0322 https://rhn.redhat.com/errata/RHSA-2014-0322.html
Copyright	Copyright (C) 2022 Greenbone AG