 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.123330 |
| Category: | Oracle Linux Local Security Checks |
| Title: | Oracle: Security Advisory (ELSA-2014-1073) |
| Summary: | The remote host is missing an update for the 'nss, nss-softokn, nss-util' package(s) announced via the ELSA-2014-1073 advisory. |
| Description: | Summary: The remote host is missing an update for the 'nss, nss-softokn, nss-util' package(s) announced via the ELSA-2014-1073 advisory. Vulnerability Insight: nss [3.16.2-2.0.1.el7_0] - Added nss-vendor.patch to change vendor [3.16.2-2] - Restore missing options descriptions fix for certutil manpage - Document certutil options --dump-ext-val, --extGeneric, and --extSAN - Related: Bug 1124659 - Rebase RHEL 7 to at least NSS 3.16.1 [3.16.2-1] - Rebase to nss-3.16.2 - Resolves: Bug 1124659 - Rebase RHEL 7 to at least NSS 3.16.1 (FF 31) - Fix test failure detection in the %check section - Move removal of unwanted source directories to the end of the %prep section - Update various patches on account of the rebase - Remove unused patches rendered obsolete by the rebase - Fix libssl and test patches that disable ssl2 support - Replace expired PayPal test certificate that breaks the build nss-softokn [3.16.2-1] - Update to nss-3.16.2 - Resolves: Bug 1124659 - Rebase RHEL 7.1 to at least NSS-SOFTOKN 3.16.1 (FF 31) nss-util [3.16.2-1] - Update to nss-3.16.2 - Resolves: Bug 1124659 - Rebase RHEL-7.0 to at least NSS 3.16.1 (FF 31) Affected Software/OS: 'nss, nss-softokn, nss-util' package(s) on Oracle Linux 7. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2014-1492 BugTraq ID: 66356 http://www.securityfocus.com/bid/66356 Bugtraq: 20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities (Google Search) http://www.securityfocus.com/archive/1/534161/100/0/threaded Debian Security Information: DSA-2994 (Google Search) http://www.debian.org/security/2014/dsa-2994 http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132437.html http://seclists.org/fulldisclosure/2014/Dec/23 https://security.gentoo.org/glsa/201504-01 http://secunia.com/advisories/59866 http://secunia.com/advisories/60621 http://secunia.com/advisories/60794 SuSE Security Announcement: SUSE-SU-2014:0665 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00006.html SuSE Security Announcement: SUSE-SU-2014:0727 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00015.html SuSE Security Announcement: openSUSE-SU-2014:0599 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-05/msg00010.html SuSE Security Announcement: openSUSE-SU-2014:0629 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-05/msg00033.html http://www.ubuntu.com/usn/USN-2159-1 http://www.ubuntu.com/usn/USN-2185-1 |
| Copyright | Copyright (C) 2015 Greenbone AG |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |