Test ID:	1.3.6.1.4.1.25623.1.0.66653
Category:	Fedora Local Security Checks
Title:	Fedora Core 11 FEDORA-2010-0227 (condor)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to condor announced via advisory FEDORA-2010-0227. Update Information: Update to 7.4.1, including security fixes ChangeLog: * Tue Jan 5 2010 - 7.4.1-1 - Upgrade to 7.4.1 release - Security update (BZ549577) - Removed NOTICE.txt source, now provided by upstream - Removed no_rpmdb_query.patch, applied upstream - Removed no_basename.patch, applied upstream - Added only_dynamic_unstripped.patch to reduce build time - Use new --with-platform, to avoid modification of make_final_tarballs - Introduced vm-gahp package to hold libvirt deps References: [ 1 ] Bug #544371 - CVE-2009-4133 Condor: queue super user cannot drop privs https://bugzilla.redhat.com/show_bug.cgi?id=544371 Solution: Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update condor' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2010-0227 Risk factor : High CVSS Score: 6.5
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-4133 BugTraq ID: 37443 http://www.securityfocus.com/bid/37443 http://condor-wiki.cs.wisc.edu/index.cgi/tktview?tn=1018 http://www.redhat.com/support/errata/RHSA-2009-1688.html http://www.redhat.com/support/errata/RHSA-2009-1689.html http://securitytracker.com/id?1023378 http://secunia.com/advisories/37766 http://secunia.com/advisories/37803 XForce ISS Database: condor-jobs-security-bypass(54984) https://exchange.xforce.ibmcloud.com/vulnerabilities/54984
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.