Test ID:	1.3.6.1.4.1.25623.1.0.122449
Category:	Oracle Linux Local Security Checks
Title:	Oracle: Security Advisory (ELSA-2009-1321)
Summary:	The remote host is missing an update for the 'nfs-utils' package(s) announced via the ELSA-2009-1321 advisory.
Description:	Summary: The remote host is missing an update for the 'nfs-utils' package(s) announced via the ELSA-2009-1321 advisory. Vulnerability Insight: [1.0.9-42 ] - mountd: Check host alias with netgroups (bz 478952) - exportfs: fixed typo in man page (bz 474848) - nfs.init: NFS server reboot results in 'Stale NFS file handle' (bz 474449) - nfslock.init: options not correctly parsed (bz 459591) - mount.nfs: mounts fail with read-only /etc (bz 450646) - nfslock.init: lockd not using settings in sysconfig/nfs (bz 434795) - tcpwrappers: updated code to correctly use api (bz 494878) - nhfsstone: added v3 and v4 support (bz 465933) - mount.nfs: add support for lookupcache= option (bz 489335). [1.0.9-41] - clarify 'mount request from unknown host' log message from mountd (bz 463578) Affected Software/OS: 'nfs-utils' package(s) on Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2008-4552 20081030 rPSA-2008-0307-1 nfs-client nfs-server nfs-utils http://www.securityfocus.com/archive/1/497935/100/0/threaded 31823 http://www.securityfocus.com/bid/31823 32346 http://secunia.com/advisories/32346 32481 http://secunia.com/advisories/32481 33006 http://secunia.com/advisories/33006 36538 http://secunia.com/advisories/36538 38794 http://secunia.com/advisories/38794 38833 http://secunia.com/advisories/38833 ADV-2010-0528 http://www.vupen.com/english/advisories/2010/0528 MDVSA-2009:060 http://www.mandriva.com/security/advisories?name=MDVSA-2009:060 RHSA-2009:1321 http://www.redhat.com/support/errata/RHSA-2009-1321.html USN-687-1 http://www.ubuntu.com/usn/USN-687-1 [oss-security] 20120719 CVE Request: quota: incorrect use of tcp_wrappers http://www.openwall.com/lists/oss-security/2012/07/19/2 [oss-security] 20120719 Re: CVE Request: quota: incorrect use of tcp_wrappers http://www.openwall.com/lists/oss-security/2012/07/19/5 [security-announce] 20100303 VMSA-2010-0004 ESX Service Console and vMA third party updates http://lists.vmware.com/pipermail/security-announce/2010/000082.html http://wiki.rpath.com/Advisories:rPSA-2008-0307 https://bugzilla.redhat.com/show_bug.cgi?id=458676 nfsutils-hostctl-security-bypass(45895) https://exchange.xforce.ibmcloud.com/vulnerabilities/45895 oval:org.mitre.oval:def:11544 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11544 oval:org.mitre.oval:def:8325 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8325
Copyright	Copyright (C) 2015 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.