Test ID:	1.3.6.1.4.1.25623.1.0.123069
Category:	Oracle Linux Local Security Checks
Title:	Oracle: Security Advisory (ELSA-2015-1447)
Summary:	The remote host is missing an update for the 'grep' package(s) announced via the ELSA-2015-1447 advisory.
Description:	Summary: The remote host is missing an update for the 'grep' package(s) announced via the ELSA-2015-1447 advisory. Vulnerability Insight: [2.20-3] - Updated pcre buildrequires to require pcre-devel >= 7.8-7 Related: rhbz#1193030 [2.20-2] - Fixed invalid UTF-8 byte sequence error in PCRE mode (by pcre-backported-fixes patch) Resolves: rhbz#1193030 - Fixed buffer overrun for grep -F Resolves: CVE-2015-1345 - Fixed bogus date in the changelog [2.20-1] - New version Resolves: rhbz#1064668 Resolves: rhbz#982215 Resolves: rhbz#1126757 Resolves: rhbz#1167766 Resolves: rhbz#1171806 - Fixed \w and \W behaviour in multibyte locales Resolves: rhbz#799863 - Documented --fixed-regexp option Resolves: rhbz#1103270 Affected Software/OS: 'grep' package(s) on Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 4.4 CVSS Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2012-5667 BugTraq ID: 57033 http://www.securityfocus.com/bid/57033 http://lists.gnu.org/archive/html/bug-grep/2012-12/msg00004.html http://openwall.com/lists/oss-security/2012/12/22/6 RedHat Security Advisories: RHSA-2015:1447 http://rhn.redhat.com/errata/RHSA-2015-1447.html Common Vulnerability Exposure (CVE) ID: CVE-2015-1345 BugTraq ID: 72281 http://www.securityfocus.com/bid/72281 http://www.openwall.com/lists/oss-security/2015/01/22/10 SuSE Security Announcement: openSUSE-SU-2015:0243 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-02/msg00037.html
Copyright	Copyright (C) 2015 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.