|
Test ID: | 1.3.6.1.4.1.25623.1.0.66037 |
Category: | Fedora Local Security Checks |
Title: | Fedora Core 11 FEDORA-2009-10285 (dnsmasq) |
Summary: | Fedora Core 11 FEDORA-2009-10285 (dnsmasq) |
Description: | Description: The remote host is missing an update to dnsmasq announced via advisory FEDORA-2009-10285. Update Information: This update fixes two security issues with dnsmasq's tftp server: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2957 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2958 ChangeLog: * Mon Oct 5 2009 Mark McLoughlin - 2.46-3 - Fix multiple TFTP server vulnerabilities (CVE-2009-2957, CVE-2009-2958) References: [ 1 ] Bug #519020 - CVE-2009-2957, CVE-2009-2958 dnsmasq: multiple vulnerabilities in TFTP server https://bugzilla.redhat.com/show_bug.cgi?id=519020 Solution: Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update dnsmasq' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2009-10285 CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P |
Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2009-2957 http://www.coresecurity.com/content/dnsmasq-vulnerabilities RedHat Security Advisories: RHSA-2010:0095 https://rhn.redhat.com/errata/RHSA-2010-0095.html http://www.redhat.com/support/errata/RHSA-2009-1238.html http://www.ubuntu.com/usn/USN-827-1 BugTraq ID: 36121 http://www.securityfocus.com/bid/36121 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10538 http://secunia.com/advisories/36563 Common Vulnerability Exposure (CVE) ID: CVE-2009-2958 BugTraq ID: 36120 http://www.securityfocus.com/bid/36120 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9816 |
Copyright | Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com |
This is only one of 58962 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |
|