Executive Summary
This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
| Summary | |
|---|---|
| Title | VMware ESXi and ESX updates to third party library and ESX Service Console |
| Informations | |||
|---|---|---|---|
| Name | VMSA-2012-0001 | First vendor Publication | 2012-01-30 |
| Vendor | VMware | Last vendor Modification | 2012-03-29 |
| Severity (Vendor) | N/A | Revision | 2 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 9.3 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| a. ESX third party update for Service Console kernel The ESX Service Console Operating System (COS) kernel is updated to kernel-2.6.18-274.3.1.el5 to fix multiple security issues in the COS kernel. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2011-0726, CVE-2011-1078, CVE-2011-1079, CVE-2011-1080, CVE-2011-1093, CVE-2011-1163, CVE-2011-1166, CVE-2011-1170, CVE-2011-1171, CVE-2011-1172, CVE-2011-1494, CVE-2011-1495, CVE-2011-1577, CVE-2011-1763, CVE-2010-4649, CVE-2011-0695, CVE-2011-0711, CVE-2011-1044, CVE-2011-1182, CVE-2011-1573, CVE-2011-1576, CVE-2011-1593, CVE-2011-1745, CVE-2011-1746, CVE-2011-1776, CVE-2011-1936, CVE-2011-2022, CVE-2011-2213, CVE-2011-2492, CVE-2011-1780, CVE-2011-2525, CVE-2011-2689, CVE-2011-2482, CVE-2011-2491, CVE-2011-2495, CVE-2011-2517, CVE-2011-2519, CVE-2011-2901 to these issues. b. ESX third party update for Service Console cURL RPM The ESX Service Console (COS) curl RPM is updated to cURL-7.15.5.9 resolving a security issues. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2011-2192 to this issue. c. ESX third party update for Service Console nspr and nss RPMs The ESX Service Console (COS) nspr and nss RPMs are updated to nspr-4.8.8-1.el5_7 and nss-3.12.10-4.el5_7 respectively resolving a security issues. A Certificate Authority (CA) issued fraudulent SSL certificates and Netscape Portable Runtime (NSPR) and Network Security Services (NSS) contain the built-in tokens of this fraudulent Certificate Authority. This update renders all SSL certificates signed by the fraudulent CA as untrusted for all uses. d. ESX third party update for Service Console rpm RPMs The ESX Service Console Operating System (COS) rpm packages are updated to popt-1.10.2.3-22.el5_7.2, rpm-4.4.2.3-22.el5_7.2, rpm-libs-4.4.2.3-22.el5_7.2 and rpm-python-4.4.2.3-22.el5_7.2 which fixes multiple security issues. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2010-2059 and CVE-2011-3378 to these issues. e. ESX third party update for Service Console samba RPMs The ESX Service Console Operating System (COS) samba packages are updated to samba-client-3.0.33-3.29.el5_7.4, samba-common-3.0.33-3.29.el5_7.4 and libsmbclient-3.0.33-3.29.el5_7.4 which fixes multiple security issues in the Samba client. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2010-0547, CVE-2010-0787, CVE-2011-1678, CVE-2011-2522 and CVE-2011-2694 to these issues. Note that ESX does not include the Samba Web Administration Tool (SWAT) and therefore ESX COS is not affected by CVE-2011-2522 and CVE-2011-2694. f. ESX third party update for Service Console python package The ESX Service Console (COS) python package is updated to 2.4.3-44 which fixes multiple security issues. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2009-3720, CVE-2010-3493, CVE-2011-1015 and CVE-2011-1521 to these issues. g. ESXi update to third party component python The python third party library is updated to python 2.5.6 which fixes multiple security issues. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2009-3560, CVE-2009-3720, CVE-2010-1634, CVE-2010-2089, and CVE-2011-1521 to these issues. |
Original Source
| Url : http://www.vmware.com/security/advisories/VMSA-2012-0001.html |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 21 % | CWE-20 | Improper Input Validation |
| 15 % | CWE-200 | Information Exposure |
| 11 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 9 % | CWE-476 | NULL Pointer Dereference |
| 9 % | CWE-190 | Integer Overflow or Wraparound (CWE/SANS Top 25) |
| 4 % | CWE-400 | Uncontrolled Resource Consumption ('Resource Exhaustion') |
| 4 % | CWE-399 | Resource Management Errors |
| 4 % | CWE-362 | Race Condition |
| 4 % | CWE-264 | Permissions, Privileges, and Access Controls |
| 4 % | CWE-189 | Numeric Errors (CWE/SANS Top 25) |
| 2 % | CWE-787 | Out-of-bounds Write (CWE/SANS Top 25) |
| 2 % | CWE-682 | Incorrect Calculation |
| 2 % | CWE-352 | Cross-Site Request Forgery (CSRF) (CWE/SANS Top 25) |
| 2 % | CWE-255 | Credentials Management |
| 2 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| 2 % | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25) |
| 2 % | CWE-59 | Improper Link Resolution Before File Access ('Link Following') |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:10613 | |||
| Oval ID: | oval:org.mitre.oval:def:10613 | ||
| Title: | The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with malformed UTF-8 sequences that trigger a buffer over-read, related to the doProlog function in lib/xmlparse.c, a different vulnerability than CVE-2009-2625 and CVE-2009-3720. | ||
| Description: | The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with malformed UTF-8 sequences that trigger a buffer over-read, related to the doProlog function in lib/xmlparse.c, a different vulnerability than CVE-2009-2625 and CVE-2009-3720. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2009-3560 | Version: | 5 |
| Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:11019 | |||
| Oval ID: | oval:org.mitre.oval:def:11019 | ||
| Title: | The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625. | ||
| Description: | The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2009-3720 | Version: | 5 |
| Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:13004 | |||
| Oval ID: | oval:org.mitre.oval:def:13004 | ||
| Title: | DSA-2271-1 curl -- improper delegation of client credentials | ||
| Description: | Richard Silverman discovered that when doing GSSAPI authentication, libcurl unconditionally performs credential delegation. This hands the server a copy of the client's security credentials, allowing the server to impersonate the client to any other using the same GSSAPI mechanism. This is obviously a very sensitive operation, which should only be done when the user explicitly so directs. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-2271-1 CVE-2011-2192 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 5.0 Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0 | Product(s): | curl |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:13013 | |||
| Oval ID: | oval:org.mitre.oval:def:13013 | ||
| Title: | DSA-2240-1 linux-2.6 -- privilege escalation/denial of service/information leak | ||
| Description: | CVE-2010-3875 Vasiliy Kulikov discovered an issue in the Linux implementation of the Amateur Radio AX.25 Level 2 protocol. Local users may obtain access to sensitive kernel memory. CVE-2011-0695 Jens Kuehnel reported an issue in the InfiniBand stack. Remote attackers can exploit a race condition to cause a denial of service. CVE-2011-0711 Dan Rosenberg reported an issue in the XFS filesystem. Local users may obtain access to sensitive kernel memory. CVE-2011-0726 Kees Cook reported an issue in the /proc/pid/stat implementation. Local users could learn the text location of a process, defeating protections provided by address space layout randomization. CVE-2011-1016 Marek Olšák discovered an issue in the driver for ATI/AMD Radeon video chips. Local users could pass arbitrary values to video memory and the graphics translation table, resulting in denial of service or escalated privileges. On default Debian installations, this is exploitable only by members of the "video" group. CVE-2011-1078 Vasiliy Kulikov discovered an issue in the Bluetooth subsystem. Local users can obtain access to sensitive kernel memory. CVE-2011-1079 Vasiliy Kulikov discovered an issue in the Bluetooth subsystem. Local users with the CAP_NET_ADMIN capability can cause a denial of service. CVE-2011-1080 Vasiliy Kulikov discovered an issue in the Netfilter subsystem. Local users can obtain access to sensitive kernel memory. CVE-2011-1090 Neil Horman discovered a memory leak in the setacl call on NFSv4 filesystems. Local users can explot this to cause a denial of service. CVE-2011-1160 Peter Huewe reported an issue in the Linux kernel's support for TPM security chips. Local users with permission to open the device can gain access to sensitive kernel memory. CVE-2011-1163 Timo Warns reported an issue in the kernel support for Alpha OSF format disk partitions. Users with physical access can gain access to sensitive kernel memory by adding a storage device with a specially crafted OSF partition. CVE-2011-1170 Vasiliy Kulikov reported an issue in the Netfilter arp table implementation. Local users with the CAP_NET_ADMIN capability can gain access to sensitive kernel memory. CVE-2011-1171 Vasiliy Kulikov reported an issue in the Netfilter IP table implementation. Local users with the CAP_NET_ADMIN capability can gain access to sensitive kernel memory. CVE-2011-1172 Vasiliy Kulikov reported an issue in the Netfilter IP6 table implementation. Local users with the CAP_NET_ADMIN capability can gain access to sensitive kernel memory. CVE-2011-1173 Vasiliy Kulikov reported an issue in the Acorn Econet protocol implementation. Local users can obtain access to sensitive kernel memory on systems that use this rare hardware. CVE-2011-1180 Dan Rosenberg reported a buffer overflow in the Information Access Service of the IrDA protocol, used for Infrared devices. Remote attackers within IR device range can cause a denial of service or possibly gain elevated privileges. CVE-2011-1182 Julien Tinnes reported an issue in the rt_sigqueueinfo interface. Local users can generate signals with falsified source pid and uid information. CVE-2011-1476 Dan Rosenberg reported issues in the Open Sound System MIDI interface that allow local users to cause a denial of service. This issue does not affect official Debian Linux image packages as they no longer provide support for OSS. However, custom kernels built from Debians linux-source-2.6.32 may have enabled this configuration and would therefore be vulnerable. CVE-2011-1477 Dan Rosenberg reported issues in the Open Sound System driver for cards that include a Yamaha FM synthesizer chip. Local users can cause memory corruption resulting in a denial of service. This issue does not affect official Debian Linux image packages as they no longer provide support for OSS. However, custom kernels built from Debians linux-source-2.6.32 may have enabled this configuration and would therefore be vulnerable. CVE-2011-1478 Ryan Sweat reported an issue in the Generic Receive Offload support in the Linux networking subsystem. If an interface has GRO enabled and is running in promiscuous mode, remote users can cause a denial of service by sending packets on an unknown VLAN. CVE-2011-1493 Dan Rosenburg reported two issues in the Linux implementation of the Amateur Radio X.25 PLP protocol. A remote user can cause a denial of service by providing specially crafted facilities fields. CVE-2011-1494 Dan Rosenberg reported an issue in the /dev/mpt2ctl interface provided by the driver for LSI MPT Fusion SAS 2.0 controllers. Local users can obtain elevated privileges by specially crafted ioctl calls. On default Debian installations this is not exploitable as this interface is only accessible to root. CVE-2011-1495 Dan Rosenberg reported two additional issues in the /dev/mpt2ctl interface provided by the driver for LSI MPT Fusion SAS 2.0 controllers. Local users can obtain elevated privileges and ready arbitrary kernel memory by using specially crafted ioctl calls. On default Debian installations this is not exploitable as this interface is only accessible to root. CVE-2011-1585 Jeff Layton reported an issue in the Common Internet File System. Local users can bypass authentication requirements for shares that are already mounted by another user. CVE-2011-1593 Robert Swiecki reported a signednes issue in the next_pidmap function, which can be exploited my local users to cause a denial of service. CVE-2011-1598 Dave Jones reported an issue in the Broadcast Manager Controller Area Network protocol that may allow local users to cause a NULL pointer dereference, resulting in a denial of service. CVE-2011-1745 Vasiliy Kulikov reported an issue in the Linux support for AGP devices. Local users can obtain elevated privileges or cause a denial of service due to missing bounds checking in the AGPIOC_BIND ioctl. On default Debian installations, this is exploitable only by users in the video group. CVE-2011-1746 Vasiliy Kulikov reported an issue in the Linux support for AGP devices. Local users can obtain elevated privileges or cause a denial of service due to missing bounds checking in the agp_allocate_memory and agp_create_user_memory. On default Debian installations, this is exploitable only by users in the video group. CVE-2011-1748 Oliver Kartkopp reported an issue in the Controller Area Network raw socket implementation which permits ocal users to cause a NULL pointer dereference, resulting in a denial of service. CVE-2011-1759 Dan Rosenberg reported an issue in the support for executing "old ABI" binaries on ARM processors. Local users can obtain elevated privileges due to insufficient bounds checking in the semtimedop system call. CVE-2011-1767 Alexecy Dobriyan reported an issue in the GRE over IP implementation. Remote users can cause a denial of service by sending a packet during module initialisation. CVE-2011-1770 Dan Rosenberg reported an issue in the Datagram Congestion Control Protocol. Remote users can cause a denial of service or potentially obtain access to sensitive kernel memory. CVE-2011-1776 Timo Warns reported an issue in the Linux implementation for GUID partitions. Users with physical access can gain access to sensitive kernel memory by adding a storage device with a specially crafted corrupted invalid partition table. CVE-2011-2022 Vasiliy Kulikov reported an issue in the Linux support for AGP devices. Local users can obtain elevated privileges or cause a denial of service due to missing bounds checking in the AGPIOC_UNBIND ioctl. On default Debian installations, this is exploitable only by users in the video group. This update also includes changes queued for the next point release of Debian 6.0, which also fix various non-security issues | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-2240-1 CVE-2010-3875 CVE-2011-0695 CVE-2011-0711 CVE-2011-0726 CVE-2011-1016 CVE-2011-1078 CVE-2011-1079 CVE-2011-1080 CVE-2011-1090 CVE-2011-1160 CVE-2011-1163 CVE-2011-1170 CVE-2011-1171 CVE-2011-1172 CVE-2011-1173 CVE-2011-1180 CVE-2011-1182 CVE-2011-1476 CVE-2011-1477 CVE-2011-1478 CVE-2011-1493 CVE-2011-1494 CVE-2011-1495 CVE-2011-1585 CVE-2011-1593 CVE-2011-1598 CVE-2011-1745 CVE-2011-1746 CVE-2011-1748 CVE-2011-1759 CVE-2011-1767 CVE-2011-1770 CVE-2011-1776 CVE-2011-2022 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0 | Product(s): | linux-2.6 |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:13090 | |||
| Oval ID: | oval:org.mitre.oval:def:13090 | ||
| Title: | USN-890-6 -- cmake vulnerabilities | ||
| Description: | USN-890-1 fixed vulnerabilities in Expat. This update provides the corresponding updates for CMake. Original advisory details: Jukka Taimisto, Tero Rontti and Rauli Kaksonen discovered that Expat did not properly process malformed XML. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash. It was discovered that Expat did not properly process malformed UTF-8 sequences. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-890-6 CVE-2009-2625 CVE-2009-3720 CVE-2009-3560 | Version: | 5 |
| Platform(s): | Ubuntu 8.10 Ubuntu 8.04 Ubuntu 9.04 | Product(s): | cmake |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:13120 | |||
| Oval ID: | oval:org.mitre.oval:def:13120 | ||
| Title: | USN-890-5 -- xmlrpc-c vulnerabilities | ||
| Description: | USN-890-1 fixed vulnerabilities in Expat. This update provides the corresponding updates for XML-RPC for C and C++. Original advisory details: Jukka Taimisto, Tero Rontti and Rauli Kaksonen discovered that Expat did not properly process malformed XML. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash. It was discovered that Expat did not properly process malformed UTF-8 sequences. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-890-5 CVE-2009-2625 CVE-2009-3720 CVE-2009-3560 | Version: | 5 |
| Platform(s): | Ubuntu 9.10 | Product(s): | xmlrpc-c |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:13155 | |||
| Oval ID: | oval:org.mitre.oval:def:13155 | ||
| Title: | USN-890-1 -- expat vulnerabilities | ||
| Description: | Jukka Taimisto, Tero Rontti and Rauli Kaksonen discovered that Expat did not properly process malformed XML. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash. It was discovered that Expat did not properly process malformed UTF-8 sequences. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-890-1 CVE-2009-2625 CVE-2009-3720 CVE-2009-3560 | Version: | 5 |
| Platform(s): | Ubuntu 8.04 Ubuntu 8.10 Ubuntu 9.10 Ubuntu 6.06 Ubuntu 9.04 | Product(s): | expat |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:13168 | |||
| Oval ID: | oval:org.mitre.oval:def:13168 | ||
| Title: | DSA-2004-1 samba -- several | ||
| Description: | Two local vulnerabilities have been discovered in samba, a SMB/CIFS file, print, and login server for Unix. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-3297 Ronald Volgers discovered that a race condition in mount.cifs allows local users to mount remote filesystems over arbitrary mount points. CVE-2010-0547 Jeff Layton discovered that missing input sanitising in mount.cifs allows denial of service by corrupting /etc/mtab. For the stable distribution, these problems have been fixed in version 2:3.2.5-4lenny9. For the unstable distribution, these problems have been fixed in version 2:3.4.5~dfsg-2. We recommend that you upgrade your samba packages. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-2004-1 CVE-2009-3297 CVE-2010-0547 | Version: | 7 |
| Platform(s): | Debian GNU/Linux 5.0 | Product(s): | samba |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:13228 | |||
| Oval ID: | oval:org.mitre.oval:def:13228 | ||
| Title: | USN-890-3 -- python2.4 vulnerabilities | ||
| Description: | USN-890-1 fixed vulnerabilities in Expat. This update provides the corresponding updates for the PyExpat module in Python 2.4. Original advisory details: Jukka Taimisto, Tero Rontti and Rauli Kaksonen discovered that Expat did not properly process malformed XML. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash. It was discovered that Expat did not properly process malformed UTF-8 sequences. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-890-3 CVE-2009-2625 CVE-2009-3720 CVE-2009-3560 | Version: | 5 |
| Platform(s): | Ubuntu 8.04 Ubuntu 8.10 Ubuntu 9.10 Ubuntu 6.06 Ubuntu 9.04 | Product(s): | python2.4 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:13312 | |||
| Oval ID: | oval:org.mitre.oval:def:13312 | ||
| Title: | USN-890-4 -- python-xml vulnerabilities | ||
| Description: | USN-890-1 fixed vulnerabilities in Expat. This update provides the corresponding updates for PyXML. Original advisory details: Jukka Taimisto, Tero Rontti and Rauli Kaksonen discovered that Expat did not properly process malformed XML. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash. It was discovered that Expat did not properly process malformed UTF-8 sequences. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-890-4 CVE-2009-2625 CVE-2009-3720 CVE-2009-3560 | Version: | 5 |
| Platform(s): | Ubuntu 6.06 | Product(s): | python-xml |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:13386 | |||
| Oval ID: | oval:org.mitre.oval:def:13386 | ||
| Title: | USN-1182-1 -- samba vulnerabilities | ||
| Description: | samba: SMB/CIFS file, print, and login server for Unix An attacker could use a malicious URL to reconfigure Samba or steal information. | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-1182-1 CVE-2011-2522 CVE-2011-2694 | Version: | 5 |
| Platform(s): | Ubuntu 11.04 Ubuntu 8.04 Ubuntu 10.04 Ubuntu 10.10 | Product(s): | samba |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:13420 | |||
| Oval ID: | oval:org.mitre.oval:def:13420 | ||
| Title: | DSA-1953-2 expat -- denial of service | ||
| Description: | The expat updates released in DSA-1953-1 caused a regression: In some cases, expat would abort with the message "error in processing external entity reference". For the old stable distribution, this problem has been fixed in version 1.95.8-3.4+etch3. For the stable distribution, this problem has been fixed in version 2.0.1-4+lenny3. For the testing distribution and the unstable distribution , this problem will be fixed soon. We recommend that you upgrade your expat packages. For reference, the original advisory text is provided below. Jan Lieskovsky discovered an error in expat, an XML parsing C library, when parsing certain UTF-8 sequences, which can be exploited to crash an application using the library. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-1953-2 CVE-2009-3560 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 5.0 Debian GNU/Linux 4.0 | Product(s): | expat |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:13433 | |||
| Oval ID: | oval:org.mitre.oval:def:13433 | ||
| Title: | USN-1093-1 -- linux-mvl-dove vulnerabilities | ||
| Description: | Joel Becker discovered that OCFS2 did not correctly validate on-disk symlink structures. If an attacker were able to trick a user or automated system into mounting a specially crafted filesystem, it could crash the system or exposde kernel memory, leading to a loss of privacy. Ben Hutchings discovered that the ethtool interface did not correctly check certain sizes. A local attacker could perform malicious ioctl calls that could crash the system, leading to a denial of service. Eric Dumazet discovered that many network functions could leak kernel stack contents. A local attacker could exploit this to read portions of kernel memory, leading to a loss of privacy. Dave Chinner discovered that the XFS filesystem did not correctly order inode lookups when exported by NFS. A remote attacker could exploit this to read or write disk blocks that had changed file assignment or had become unlinked, leading to a loss of privacy. Tavis Ormandy discovered that the IRDA subsystem did not correctly shut down. A local attacker could exploit this to cause the system to crash or possibly gain root privileges. Brad Spengler discovered that the wireless extensions did not correctly validate certain request sizes. A local attacker could exploit this to read portions of kernel memory, leading to a loss of privacy. Tavis Ormandy discovered that the session keyring did not correctly check for its parent. On systems without a default session keyring, a local attacker could exploit this to crash the system, leading to a denial of service. Kees Cook discovered that the Intel i915 graphics driver did not correctly validate memory regions. A local attacker with access to the video card could read and write arbitrary kernel memory to gain root privileges. Kees Cook discovered that the V4L1 32bit compat interface did not correctly validate certain parameters. A local attacker on a 64bit system with access to a video device could exploit this to gain root privileges. Tavis Ormandy discovered that the AIO subsystem did not correctly validate certain parameters. A local attacker could exploit this to crash the system or possibly gain root privileges. Dan Rosenberg discovered that certain XFS ioctls leaked kernel stack contents. A local attacker could exploit this to read portions of kernel memory, leading to a loss of privacy. Robert Swiecki discovered that ftrace did not correctly handle mutexes. A local attacker could exploit this to crash the kernel, leading to a denial of service. Tavis Ormandy discovered that the OSS sequencer device did not correctly shut down. A local attacker could exploit this to crash the system or possibly gain root privileges. Dan Rosenberg discovered that several network ioctls did not clear kernel memory correctly. A local user could exploit this to read kernel stack memory, leading to a loss of privacy. Dan Rosenberg discovered that the ROSE driver did not correctly check parameters. A local attacker with access to a ROSE network device could exploit this to crash the system or possibly gain root privileges. Thomas Dreibholz discovered that SCTP did not correctly handle appending packet chunks. A remote attacker could send specially crafted traffic to crash the system, leading to a denial of service. Dan Rosenberg discovered that the CD driver did not correctly check parameters. A local attacker could exploit this to read arbitrary kernel memory, leading to a loss of privacy. Dan Rosenberg discovered that the Sound subsystem did not correctly validate parameters. A local attacker could exploit this to crash the system, leading to a denial of service. Dan Rosenberg discovered that SCTP did not correctly handle HMAC calculations. A remote attacker could send specially crafted traffic that would crash the system, leading to a denial of service. Nelson Elhage discovered several problems with the Acorn Econet protocol driver. A local user could cause a denial of service via a NULL pointer dereference, escalate privileges by overflowing the kernel stack, and assign Econet addresses to arbitrary interfaces. Brad Spengler discovered that stack memory for new a process was not correctly calculated. A local attacker could exploit this to crash the system, leading to a denial of service. Dan Rosenberg discovered that the Linux kernel TIPC implementation contained multiple integer signedness errors. A local attacker could exploit this to gain root privileges. Kees Cook discovered that the ethtool interface did not correctly clear kernel memory. A local attacker could read kernel heap memory, leading to a loss of privacy. Thomas Pollet discovered that the RDS network protocol did not check certain iovec buffers. A local attacker could exploit this to crash the system or possibly execute arbitrary code as the root user. Dan Rosenberg discovered that the Linux kernel X.25 implementation incorrectly parsed facilities. A remote attacker could exploit this to crash the kernel, leading to a denial of service. Dan Rosenberg discovered that the CAN protocol on 64bit systems did not correctly calculate the size of certain buffers. A local attacker could exploit this to crash the system or possibly execute arbitrary code as the root user. Vasiliy Kulikov discovered that the Linux kernel X.25 implementation did not correctly clear kernel memory. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. Vasiliy Kulikov discovered that the Linux kernel sockets implementation did not properly initialize certain structures. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. Vasiliy Kulikov discovered that the TIPC interface did not correctly initialize certain structures. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. Nelson Elhage discovered that the Linux kernel IPv4 implementation did not properly audit certain bytecodes in netlink messages. A local attacker could exploit this to cause the kernel to hang, leading to a denial of service. Dan Rosenberg discovered that the RDS network protocol did not correctly check certain parameters. A local attacker could exploit this gain root privileges. Kees Cook and Vasiliy Kulikov discovered that the shm interface did not clear kernel memory correctly. A local attacker could exploit this to read kernel stack memory, leading to a loss of privacy. Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. Dan Rosenberg discovered that the socket filters did not correctly initialize structure memory. A local attacker could create malicious filters to read portions of kernel stack memory, leading to a loss of privacy. Dan Rosenberg discovered that the SCSI subsystem did not correctly validate iov segments. A local attacker with access to a SCSI device could send specially crafted requests to crash the system, leading to a denial of service. Steve Chen discovered that setsockopt did not correctly check MSS values. A local attacker could make a specially crafted socket call to crash the system, leading to a denial of service. Dave Jones discovered that the mprotect system call did not correctly handle merged VMAs. A local attacker could exploit this to crash the system, leading to a denial of service. Dan Rosenberg discovered that the RDS protocol did not correctly check ioctl arguments. A local attacker could exploit this to crash the system, leading to a denial of service. Vegard Nossum discovered that memory garbage collection was not handled correctly for active sockets. A local attacker could exploit this to allocate all available kernel memory, leading to a denial of service. It was discovered that multithreaded exec did not handle CPU timers correctly. A local attacker could exploit this to crash the system, leading to a denial of service. Krishna Gudipati discovered that the bfa adapter driver did not correctly initialize certain structures. A local attacker could read files in /sys to crash the system, leading to a denial of service. Tavis Ormandy discovered that the install_special_mapping function could bypass the mmap_min_addr restriction. A local attacker could exploit this to mmap 4096 bytes below the mmap_min_addr area, possibly improving the chances of performing NULL pointer dereference attacks. It was discovered that the ICMP stack did not correctly handle certain unreachable messages. If a remote attacker were able to acquire a socket lock, they could send specially crafted traffic that would crash the system, leading to a denial of service. Dan Rosenberg discovered that the OSS subsystem did not handle name termination correctly. A local attacker could exploit this crash the system or gain root privileges. Dan Carpenter discovered that the Infiniband driver did not correctly handle certain requests. A local user could exploit this to crash the system or potentially gain root privileges | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-1093-1 CVE-2010-3904 CVE-2010-3848 CVE-2010-3849 CVE-2010-3850 CVE-2010-2478 CVE-2010-3084 CVE-2010-2942 CVE-2010-3477 CVE-2010-2943 CVE-2010-2954 CVE-2010-2955 CVE-2010-2960 CVE-2010-2962 CVE-2010-2963 CVE-2010-3067 CVE-2010-3078 CVE-2010-3079 CVE-2010-3080 CVE-2010-3296 CVE-2010-3297 CVE-2010-3298 CVE-2010-3310 CVE-2010-3432 CVE-2010-3437 CVE-2010-3442 CVE-2010-3448 CVE-2010-3698 CVE-2010-3705 CVE-2010-3858 CVE-2010-3859 CVE-2010-3861 CVE-2010-3865 CVE-2010-3873 CVE-2010-3874 CVE-2010-3875 CVE-2010-3876 CVE-2010-3877 CVE-2010-3880 CVE-2010-3881 CVE-2010-4072 CVE-2010-4073 CVE-2010-4075 CVE-2010-4079 CVE-2010-4080 CVE-2010-4081 CVE-2010-4082 CVE-2010-4083 CVE-2010-4157 CVE-2010-4158 CVE-2010-4160 CVE-2010-4162 CVE-2010-4163 CVE-2010-4668 CVE-2010-4164 CVE-2010-4165 CVE-2010-4169 CVE-2010-4175 CVE-2010-4242 CVE-2010-4248 CVE-2010-4249 CVE-2010-4258 CVE-2010-4343 CVE-2010-4346 CVE-2010-4526 CVE-2010-4527 CVE-2010-4648 CVE-2010-4649 CVE-2011-1044 CVE-2010-4650 CVE-2010-4655 CVE-2010-4656 CVE-2011-0006 CVE-2011-0521 CVE-2011-0712 CVE-2011-1010 CVE-2011-1012 CVE-2011-1082 CVE-2011-1093 | Version: | 5 |
| Platform(s): | Ubuntu 10.10 Ubuntu 10.04 | Product(s): | linux-mvl-dove |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:13596 | |||
| Oval ID: | oval:org.mitre.oval:def:13596 | ||
| Title: | USN-890-2 -- python2.5 vulnerabilities | ||
| Description: | USN-890-1 fixed vulnerabilities in Expat. This update provides the corresponding updates for the PyExpat module in Python 2.5. Original advisory details: Jukka Taimisto, Tero Rontti and Rauli Kaksonen discovered that Expat did not properly process malformed XML. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash. It was discovered that Expat did not properly process malformed UTF-8 sequences. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-890-2 CVE-2009-2625 CVE-2009-3720 CVE-2009-3560 | Version: | 5 |
| Platform(s): | Ubuntu 8.04 Ubuntu 8.10 Ubuntu 9.10 Ubuntu 9.04 | Product(s): | python2.5 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:13655 | |||
| Oval ID: | oval:org.mitre.oval:def:13655 | ||
| Title: | DSA-1953-1 expat -- denial of service | ||
| Description: | Jan Lieskovsky discovered an error in expat, an XML parsing C library, when parsing certain UTF-8 sequences, which can be exploited to crash an application using the library. For the old stable distribution, this problem has been fixed in version 1.95.8-3.4+etch2. For the stable distribution, this problem has been fixed in version 2.0.1-4+lenny2. For the testing distribution and the unstable distribution , this problem will be in version 2.0.1-6. The builds for the mipsel architecture for the old stable distribution are not included yet. They will be released when they become available. We recommend that you upgrade your expat packages. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-1953-1 CVE-2009-3560 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 5.0 Debian GNU/Linux 4.0 | Product(s): | expat |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:14747 | |||
| Oval ID: | oval:org.mitre.oval:def:14747 | ||
| Title: | USN-1269-1 -- Linux kernel (EC2) vulnerabilities | ||
| Description: | linux-ec2: Linux kernel for EC2 Several security issues were fixed in the kernel. | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-1269-1 CVE-2011-2491 CVE-2011-2496 CVE-2011-2517 CVE-2011-2525 | Version: | 5 |
| Platform(s): | Ubuntu 10.04 | Product(s): | Linux |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:14846 | |||
| Oval ID: | oval:org.mitre.oval:def:14846 | ||
| Title: | USN-1271-1 -- Linux kernel (i.MX51) vulnerabilities | ||
| Description: | linux-fsl-imx51: Linux kernel for IMX51 Several security issues were fixed in the kernel. | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-1271-1 CVE-2011-1585 CVE-2011-1767 CVE-2011-1768 CVE-2011-2491 | Version: | 5 |
| Platform(s): | Ubuntu 10.04 | Product(s): | Linux |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:14986 | |||
| Oval ID: | oval:org.mitre.oval:def:14986 | ||
| Title: | USN-1274-1 -- Linux kernel (Marvell DOVE) vulnerabilities | ||
| Description: | linux-mvl-dove: Linux kernel for DOVE Several security issues were fixed in the kernel. | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-1274-1 CVE-2011-2491 CVE-2011-2496 CVE-2011-2517 CVE-2011-2525 | Version: | 5 |
| Platform(s): | Ubuntu 10.10 | Product(s): | Linux |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:15056 | |||
| Oval ID: | oval:org.mitre.oval:def:15056 | ||
| Title: | USN-1278-1 -- Linux (Maverick backport) vulnerabilities | ||
| Description: | linux-lts-backport-maverick: Linux kernel backport from Maverick Several security issues were fixed in the kernel. | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-1278-1 CVE-2011-1585 CVE-2011-2183 CVE-2011-2491 CVE-2011-2496 CVE-2011-2517 | Version: | 5 |
| Platform(s): | Ubuntu 10.04 | Product(s): | Linux |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:15137 | |||
| Oval ID: | oval:org.mitre.oval:def:15137 | ||
| Title: | DSA-2290-1 samba -- cross-site scripting | ||
| Description: | The Samba Web Administration Tool contains several cross-site request forgery vulnerabilities and a cross-site scripting vulnerability . | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-2290-1 CVE-2011-2522 CVE-2011-2694 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 5.0 Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0 | Product(s): | samba |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:15345 | |||
| Oval ID: | oval:org.mitre.oval:def:15345 | ||
| Title: | USN-1314-1 -- Python 3 vulnerabilities | ||
| Description: | python3.1: An interactive high-level object-oriented language - python3.2: An interactive high-level object-oriented language Applications using certain Python 3 modules could be made to crash or expose sensitive information over the network. | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-1314-1 CVE-2010-3493 CVE-2011-1521 | Version: | 5 |
| Platform(s): | Ubuntu 11.04 Ubuntu 10.04 Ubuntu 10.10 | Product(s): | Python |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:15448 | |||
| Oval ID: | oval:org.mitre.oval:def:15448 | ||
| Title: | USN-1205-1 -- Linux kernel (Maverick backport) vulnerabilities | ||
| Description: | linux-lts-backport-maverick: Linux kernel backport from Maverick Multiple kernel flaws have been fixed. | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-1205-1 CVE-2011-1020 CVE-2011-1493 CVE-2011-1770 CVE-2011-2484 CVE-2011-2492 | Version: | 5 |
| Platform(s): | Ubuntu 10.04 | Product(s): | Linux |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:18064 | |||
| Oval ID: | oval:org.mitre.oval:def:18064 | ||
| Title: | DSA-1977-1 python - several vulnerabilities | ||
| Description: | Jukka Taimisto, Tero Rontti and Rauli Kaksonen discovered that the embedded Expat copy in the interpreter for the Python language, does not properly process malformed or crafted XML files. (<a href="http://security-tracker.debian.org/tracker/CVE-2009-3560">CVE-2009-3560</a> <a href="http://security-tracker.debian.org/tracker/CVE-2009-3720">CVE-2009-3720</a>) This vulnerability could allow an attacker to cause a denial of service while parsing a malformed XML file. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-1977-1 CVE-2008-2316 CVE-2009-3560 CVE-2009-3720 | Version: | 7 |
| Platform(s): | Debian GNU/Linux 4.0 Debian GNU/Linux 5.0 | Product(s): | python2.4 python2.5 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:19700 | |||
| Oval ID: | oval:org.mitre.oval:def:19700 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | Multiple integer overflows in the next_pidmap function in kernel/pid.c in the Linux kernel before 2.6.38.4 allow local users to cause a denial of service (system crash) via a crafted (1) getdents or (2) readdir system call. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1593 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:19711 | |||
| Oval ID: | oval:org.mitre.oval:def:19711 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The xfs_fs_geometry function in fs/xfs/xfs_fsops.c in the Linux kernel before 2.6.38-rc6-git3 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via an FSGEOMETRY_V1 ioctl call. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-0711 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:19724 | |||
| Oval ID: | oval:org.mitre.oval:def:19724 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | lib/fsm.c in RPM 4.8.0 and unspecified 4.7.x and 4.6.x versions, and RPM before 4.4.3, does not properly reset the metadata of an executable file during replacement of the file in an RPM package upgrade, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid or (2) setgid file. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2010-2059 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:19744 | |||
| Oval ID: | oval:org.mitre.oval:def:19744 | ||
| Title: | VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm. | ||
| Description: | lib/fsm.c in RPM 4.8.0 and unspecified 4.7.x and 4.6.x versions, and RPM before 4.4.3, does not properly reset the metadata of an executable file during replacement of the file in an RPM package upgrade, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid or (2) setgid file. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2010-2059 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:19755 | |||
| Oval ID: | oval:org.mitre.oval:def:19755 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | Multiple race conditions in smtpd.py in the smtpd module in Python 2.6, 2.7, 3.1, and 3.2 alpha allow remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected return value of None, an unexpected value of None for the address, or an ECONNABORTED, EAGAIN, or EWOULDBLOCK error, or the getpeername function having an ENOTCONN error, a related issue to CVE-2010-3492. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2010-3493 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:19774 | |||
| Oval ID: | oval:org.mitre.oval:def:19774 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | Xen, possibly before 4.0.2, allows local 64-bit PV guests to cause a denial of service (host crash) by specifying user mode execution without user-mode pagetables. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1166 | Version: | 5 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20192 | |||
| Oval ID: | oval:org.mitre.oval:def:20192 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The gfs2_fallocate function in fs/gfs2/file.c in the Linux kernel before 3.0-rc1 does not ensure that the size of a chunk allocation is a multiple of the block size, which allows local users to cause a denial of service (BUG and system crash) by arranging for all resource groups to have too little free space. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-2689 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20200 | |||
| Oval ID: | oval:org.mitre.oval:def:20200 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The urllib and urllib2 modules in Python 2.x before 2.7.2 and 3.x before 3.2.1 process Location headers that specify redirection to file: URLs, which makes it easier for remote attackers to obtain sensitive information or cause a denial of service (resource consumption) via a crafted URL, as demonstrated by the file:///etc/passwd and file:///dev/zero URLs. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1521 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20208 | |||
| Oval ID: | oval:org.mitre.oval:def:20208 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | Xen, when using x86 Intel processors and the VMX virtualization extension is enabled, does not properly handle cpuid instruction emulation when exiting the VM, which allows local guest users to cause a denial of service (guest crash) via unspecified vectors. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1936 | Version: | 5 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20210 | |||
| Oval ID: | oval:org.mitre.oval:def:20210 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | net/ipv4/netfilter/arp_tables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability to issue a crafted request, and then reading the argument to the resulting modprobe process. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1170 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20229 | |||
| Oval ID: | oval:org.mitre.oval:def:20229 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | Off-by-one error in the __addr_ok macro in Xen 3.3 and earlier allows local 64 bit PV guest administrators to cause a denial of service (host crash) via unspecified hypercalls that ignore virtual-address bits. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-2901 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20234 | |||
| Oval ID: | oval:org.mitre.oval:def:20234 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | Multiple integer overflows in the (1) agp_allocate_memory and (2) agp_create_user_memory functions in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allow local users to trigger buffer overflows, and consequently cause a denial of service (system crash) or possibly have unspecified other impact, via vectors related to calls that specify a large number of memory pages. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1746 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20248 | |||
| Oval ID: | oval:org.mitre.oval:def:20248 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | RPM 4.4.x through 4.9.x, probably before 4.9.1.2, allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via an rpm package with crafted headers and offsets that are not properly handled when a package is queried or installed, related to (1) the regionSwab function, (2) the headerLoad function, and (3) multiple functions in rpmio/rpmpgp.c. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-3378 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20258 | |||
| Oval ID: | oval:org.mitre.oval:def:20258 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonstrated by discovering the length of another user's password. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-2495 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20263 | |||
| Oval ID: | oval:org.mitre.oval:def:20263 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The osf_partition function in fs/partitions/osf.c in the Linux kernel before 2.6.38 does not properly handle an invalid number of partitions, which might allow local users to obtain potentially sensitive information from kernel heap memory via vectors related to partition-table parsing. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1163 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20305 | |||
| Oval ID: | oval:org.mitre.oval:def:20305 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | net/sctp/sm_make_chunk.c in the Linux kernel before 2.6.34, when addip_enable and auth_enable are used, does not consider the amount of zero padding during calculation of chunk lengths for (1) INIT and (2) INIT ACK chunks, which allows remote attackers to cause a denial of service (OOPS) via crafted packet data. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1573 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20325 | |||
| Oval ID: | oval:org.mitre.oval:def:20325 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1182 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20403 | |||
| Oval ID: | oval:org.mitre.oval:def:20403 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The Network Lock Manager (NLM) protocol implementation in the NFS client functionality in the Linux kernel before 3.0 allows local users to cause a denial of service (system hang) via a LOCK_UN flock system call. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-2491 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20404 | |||
| Oval ID: | oval:org.mitre.oval:def:20404 | ||
| Title: | VMware ESX third party updates for Service Console packages glibc and dhcp | ||
| Description: | drivers/scsi/mpt2sas/mpt2sas_ctl.c in the Linux kernel 2.6.38 and earlier does not validate (1) length and (2) offset values before performing memory copy operations, which might allow local users to gain privileges, cause a denial of service (memory corruption), or obtain sensitive information from kernel memory via a crafted ioctl call, related to the _ctl_do_mpt_command and _ctl_diag_read_buffer functions. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1495 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 VMWare ESX Server 4.0 VMWare ESX Server 3.5 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20406 | |||
| Oval ID: | oval:org.mitre.oval:def:20406 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | Cross-site scripting (XSS) vulnerability in the chg_passwd function in web/swat.c in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allows remote authenticated administrators to inject arbitrary web script or HTML via the username parameter to the passwd program (aka the user field to the Change Password page). | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-2694 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20416 | |||
| Oval ID: | oval:org.mitre.oval:def:20416 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The is_cgi method in CGIHTTPServer.py in the CGIHTTPServer module in Python 2.5, 2.6, and 3.0 allows remote attackers to read script source code via an HTTP GET request that lacks a / (slash) character at the beginning of the URI. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1015 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20423 | |||
| Oval ID: | oval:org.mitre.oval:def:20423 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | Xen in the Linux kernel, when running a guest on a host without hardware assisted paging (HAP), allows guest users to cause a denial of service (invalid pointer dereference and hypervisor crash) via the SAHF instruction. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-2519 | Version: | 5 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20425 | |||
| Oval ID: | oval:org.mitre.oval:def:20425 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The bluetooth subsystem in the Linux kernel before 3.0-rc4 does not properly initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel memory via a crafted getsockopt system call, related to (1) the l2cap_sock_getsockopt_old function in net/bluetooth/l2cap_sock.c and (2) the rfcomm_sock_getsockopt_old function in net/bluetooth/rfcomm/sock.c. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-2492 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20431 | |||
| Oval ID: | oval:org.mitre.oval:def:20431 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | Integer overflow in the agp_generic_insert_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_BIND agp_ioctl ioctl call. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1745 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20437 | |||
| Oval ID: | oval:org.mitre.oval:def:20437 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | Race condition in the cm_work_handler function in the InfiniBand driver (drivers/infiniband/core/cma.c) in Linux kernel 2.6.x allows remote attackers to cause a denial of service (panic) by sending an InfiniBand request while other request handlers are still running, which triggers an invalid pointer dereference. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-0695 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20444 | |||
| Oval ID: | oval:org.mitre.oval:def:20444 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | net/ipv6/netfilter/ip6_tables.c in the IPv6 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability to issue a crafted request, and then reading the argument to the resulting modprobe process. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1172 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20485 | |||
| Oval ID: | oval:org.mitre.oval:def:20485 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface (EFI) GUID Partition Table (GPT) entry, which allows physically proximate attackers to cause a denial of service (heap-based buffer overflow and OOPS) or obtain sensitive information from kernel heap memory by connecting a crafted GPT storage device, a different vulnerability than CVE-2011-1577. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1776 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20528 | |||
| Oval ID: | oval:org.mitre.oval:def:20528 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | Integer overflow in the ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large value of a certain structure member. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2010-4649 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20530 | |||
| Oval ID: | oval:org.mitre.oval:def:20530 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | drivers/scsi/mpt2sas/mpt2sas_ctl.c in the Linux kernel 2.6.38 and earlier does not validate (1) length and (2) offset values before performing memory copy operations, which might allow local users to gain privileges, cause a denial of service (memory corruption), or obtain sensitive information from kernel memory via a crafted ioctl call, related to the _ctl_do_mpt_command and _ctl_diag_read_buffer functions. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1495 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20531 | |||
| Oval ID: | oval:org.mitre.oval:def:20531 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The get_free_port function in Xen allows local authenticated DomU users to cause a denial of service or possibly gain privileges via unspecified vectors involving a new event channel port. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1763 | Version: | 5 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20545 | |||
| Oval ID: | oval:org.mitre.oval:def:20545 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The agp_generic_remove_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 does not validate a certain start parameter, which allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_UNBIND agp_ioctl ioctl call, a different vulnerability than CVE-2011-1745. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-2022 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20548 | |||
| Oval ID: | oval:org.mitre.oval:def:20548 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | net/ipv4/netfilter/ip_tables.c in the IPv4 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability to issue a crafted request, and then reading the argument to the resulting modprobe process. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1171 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20550 | |||
| Oval ID: | oval:org.mitre.oval:def:20550 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the Linux kernel before 2.6.37 does not initialize a certain response buffer, which allows local users to obtain potentially sensitive information from kernel memory via vectors that cause this buffer to be only partially filled, a different vulnerability than CVE-2010-4649. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1044 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20567 | |||
| Oval ID: | oval:org.mitre.oval:def:20567 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The do_replace function in net/bridge/netfilter/ebtables.c in the Linux kernel before 2.6.39 does not ensure that a certain name field ends with a '\0' character, which allows local users to obtain potentially sensitive information from kernel stack memory by leveraging the CAP_NET_ADMIN capability to replace a table, and then reading a modprobe command line. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1080 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20570 | |||
| Oval ID: | oval:org.mitre.oval:def:20570 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | Integer overflow in the _ctl_do_mpt_command function in drivers/scsi/mpt2sas/mpt2sas_ctl.c in the Linux kernel 2.6.38 and earlier might allow local users to gain privileges or cause a denial of service (memory corruption) via an ioctl call specifying a crafted value that triggers a heap-based buffer overflow. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1494 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20573 | |||
| Oval ID: | oval:org.mitre.oval:def:20573 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | Heap-based buffer overflow in the is_gpt_valid function in fs/partitions/efi.c in the Linux kernel 2.6.38 and earlier allows physically proximate attackers to cause a denial of service (OOPS) or possibly have unspecified other impact via a crafted size of the EFI GUID partition-table header on removable media. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1577 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20576 | |||
| Oval ID: | oval:org.mitre.oval:def:20576 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local users to gain privileges by leveraging the CAP_NET_ADMIN capability during scan operations with a long SSID value. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-2517 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20577 | |||
| Oval ID: | oval:org.mitre.oval:def:20577 | ||
| Title: | VMware ESX third party updates for Service Console packages glibc and dhcp | ||
| Description: | Integer overflow in the _ctl_do_mpt_command function in drivers/scsi/mpt2sas/mpt2sas_ctl.c in the Linux kernel 2.6.38 and earlier might allow local users to gain privileges or cause a denial of service (memory corruption) via an ioctl call specifying a crafted value that triggers a heap-based buffer overflow. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1494 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 VMWare ESX Server 4.0 VMWare ESX Server 3.5 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20605 | |||
| Oval ID: | oval:org.mitre.oval:def:20605 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The instruction emulation in Xen 3.0.3 allows local SMP guest users to cause a denial of service (host crash) by replacing the instruction that causes the VM to exit in one thread with a different instruction in a different thread. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1780 | Version: | 5 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20615 | |||
| Oval ID: | oval:org.mitre.oval:def:20615 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The Generic Receive Offload (GRO) implementation in the Linux kernel 2.6.18 on Red Hat Enterprise Linux 5 and 2.6.32 on Red Hat Enterprise Linux 6, as used in Red Hat Enterprise Virtualization (RHEV) Hypervisor and other products, allows remote attackers to cause a denial of service via crafted VLAN packets that are processed by the napi_reuse_skb function, leading to (1) a memory leak or (2) memory corruption, a different vulnerability than CVE-2011-1478. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1576 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20619 | |||
| Oval ID: | oval:org.mitre.oval:def:20619 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allow remote attackers to hijack the authentication of administrators for requests that (1) shut down daemons, (2) start daemons, (3) add shares, (4) remove shares, (5) add printers, (6) remove printers, (7) add user accounts, or (8) remove user accounts, as demonstrated by certain start, stop, and restart parameters to the status program. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-2522 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20630 | |||
| Oval ID: | oval:org.mitre.oval:def:20630 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The Curl_input_negotiate function in http_negotiate.c in libcurl 7.10.6 through 7.21.6, as used in curl and other products, always performs credential delegation during GSSAPI authentication, which allows remote servers to impersonate clients via GSSAPI requests. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-2192 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20631 | |||
| Oval ID: | oval:org.mitre.oval:def:20631 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | client/mount.cifs.c in mount.cifs in smbfs in Samba 3.4.5 and earlier does not verify that the (1) device name and (2) mountpoint strings are composed of valid characters, which allows local users to cause a denial of service (mtab corruption) via a crafted string. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2010-0547 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20637 | |||
| Oval ID: | oval:org.mitre.oval:def:20637 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2009-3720 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20640 | |||
| Oval ID: | oval:org.mitre.oval:def:20640 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The bnep_sock_ioctl function in net/bluetooth/bnep/sock.c in the Linux kernel before 2.6.39 does not ensure that a certain device field ends with a '\0' character, which allows local users to obtain potentially sensitive information from kernel stack memory, or cause a denial of service (BUG and system crash), via a BNEPCONNADD command. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1079 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20644 | |||
| Oval ID: | oval:org.mitre.oval:def:20644 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | smbfs in Samba 3.5.8 and earlier attempts to use (1) mount.cifs to append to the /etc/mtab file and (2) umount.cifs to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1678 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20650 | |||
| Oval ID: | oval:org.mitre.oval:def:20650 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The do_task_stat function in fs/proc/array.c in the Linux kernel before 2.6.39-rc1 does not perform an expected uid check, which makes it easier for local users to defeat the ASLR protection mechanism by reading the start_code and end_code fields in the /proc/#####/stat file for a process executing a PIE binary. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-0726 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20671 | |||
| Oval ID: | oval:org.mitre.oval:def:20671 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The qdisc_notify function in net/sched/sch_api.c in the Linux kernel before 2.6.35 does not prevent tc_fill_qdisc function calls referencing builtin (aka CQ_F_BUILTIN) Qdisc structures, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via a crafted call. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-2525 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20672 | |||
| Oval ID: | oval:org.mitre.oval:def:20672 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The inet_diag_bc_audit function in net/ipv4/inet_diag.c in the Linux kernel before 2.6.39.3 does not properly audit INET_DIAG bytecode, which allows local users to cause a denial of service (kernel infinite loop) via crafted INET_DIAG_REQ_BYTECODE instructions in a netlink message, as demonstrated by an INET_DIAG_BC_JMP instruction with a zero yes value, a different vulnerability than CVE-2010-3880. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-2213 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20687 | |||
| Oval ID: | oval:org.mitre.oval:def:20687 | ||
| Title: | VMware ESXi and ESX address several security issues | ||
| Description: | A certain Red Hat patch to the sctp_sock_migrate function in net/sctp/socket.c in the Linux kernel before 2.6.21, as used in Red Hat Enterprise Linux (RHEL) 5, allows remote attackers to cause a denial of service (NULL pointer dereference and OOPS) via a crafted SCTP packet. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-2482 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.0 VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20695 | |||
| Oval ID: | oval:org.mitre.oval:def:20695 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The sco_sock_getsockopt_old function in net/bluetooth/sco.c in the Linux kernel before 2.6.39 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via the SCO_CONNINFO option. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1078 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20697 | |||
| Oval ID: | oval:org.mitre.oval:def:20697 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | The dccp_rcv_state_process function in net/dccp/input.c in the Datagram Congestion Control Protocol (DCCP) implementation in the Linux kernel before 2.6.38 does not properly handle packets for a CLOSED endpoint, which allows remote attackers to cause a denial of service (NULL pointer dereference and OOPS) by sending a DCCP-Close packet followed by a DCCP-Reset packet. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2011-1093 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:20717 | |||
| Oval ID: | oval:org.mitre.oval:def:20717 | ||
| Title: | VMware ESXi and ESX updates to third party library and ESX Service Console | ||
| Description: | client/mount.cifs.c in mount.cifs in smbfs in Samba 3.0.22, 3.0.28a, 3.2.3, 3.3.2, 3.4.0, and 3.4.5 allows local users to mount a CIFS share on an arbitrary mountpoint, and gain privileges, via a symlink attack on the mountpoint directory file. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2010-0787 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:21626 | |||
| Oval ID: | oval:org.mitre.oval:def:21626 | ||
| Title: | RHSA-2011:0554: python security, bug fix, and enhancement update (Moderate) | ||
| Description: | The urllib and urllib2 modules in Python 2.x before 2.7.2 and 3.x before 3.2.1 process Location headers that specify redirection to file: URLs, which makes it easier for remote attackers to obtain sensitive information or cause a denial of service (resource consumption) via a crafted URL, as demonstrated by the file:///etc/passwd and file:///dev/zero URLs. | ||
| Family: | unix | Class: | patch |
| Reference(s): | RHSA-2011:0554-01 CVE-2010-3493 CVE-2011-1015 CVE-2011-1521 | Version: | 42 |
| Platform(s): | Red Hat Enterprise Linux 6 | Product(s): | python python-docs |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:21659 | |||
| Oval ID: | oval:org.mitre.oval:def:21659 | ||
| Title: | RHSA-2011:1349: rpm security update (Important) | ||
| Description: | RPM 4.4.x through 4.9.x, probably before 4.9.1.2, allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via an rpm package with crafted headers and offsets that are not properly handled when a package is queried or installed, related to (1) the regionSwab function, (2) the headerLoad function, and (3) multiple functions in rpmio/rpmpgp.c. | ||
| Family: | unix | Class: | patch |
| Reference(s): | RHSA-2011:1349-01 CESA-2011:1349 CVE-2011-3378 | Version: | 4 |
| Platform(s): | Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 5 CentOS Linux 5 CentOS Linux 6 | Product(s): | rpm |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:21913 | |||
| Oval ID: | oval:org.mitre.oval:def:21913 | ||
| Title: | RHSA-2011:0918: curl security update (Moderate) | ||
| Description: | The Curl_input_negotiate function in http_negotiate.c in libcurl 7.10.6 through 7.21.6, as used in curl and other products, always performs credential delegation during GSSAPI authentication, which allows remote servers to impersonate clients via GSSAPI requests. | ||
| Family: | unix | Class: | patch |
| Reference(s): | RHSA-2011:0918-01 CVE-2011-2192 CESA-2011:0918-CentOS 5 | Version: | 6 |
| Platform(s): | Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 5 CentOS Linux 5 | Product(s): | curl |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:21921 | |||
| Oval ID: | oval:org.mitre.oval:def:21921 | ||
| Title: | RHSA-2011:0027: python security, bug fix, and enhancement update (Low) | ||
| Description: | The audioop module in Python 2.7 and 3.2 does not verify the relationships between size arguments and byte string lengths, which allows context-dependent attackers to cause a denial of service (memory corruption and application crash) via crafted arguments, as demonstrated by a call to audioop.reverse with a one-byte string, a different vulnerability than CVE-2010-1634. | ||
| Family: | unix | Class: | patch |
| Reference(s): | RHSA-2011:0027-01 CVE-2008-5983 CVE-2009-4134 CVE-2010-1449 CVE-2010-1450 CVE-2010-1634 CVE-2010-2089 | Version: | 81 |
| Platform(s): | Red Hat Enterprise Linux 5 | Product(s): | python |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:21923 | |||
| Oval ID: | oval:org.mitre.oval:def:21923 | ||
| Title: | RHSA-2011:0492: python security update (Moderate) | ||
| Description: | The urllib and urllib2 modules in Python 2.x before 2.7.2 and 3.x before 3.2.1 process Location headers that specify redirection to file: URLs, which makes it easier for remote attackers to obtain sensitive information or cause a denial of service (resource consumption) via a crafted URL, as demonstrated by the file:///etc/passwd and file:///dev/zero URLs. | ||
| Family: | unix | Class: | patch |
| Reference(s): | RHSA-2011:0492-01 CESA-2011:0492 CVE-2009-3720 CVE-2010-3493 CVE-2011-1015 CVE-2011-1521 | Version: | 55 |
| Platform(s): | Red Hat Enterprise Linux 5 CentOS Linux 5 | Product(s): | python |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:21936 | |||
| Oval ID: | oval:org.mitre.oval:def:21936 | ||
| Title: | RHSA-2011:1065: Red Hat Enterprise Linux 5.7 kernel security and bug fix update (Important) | ||
| Description: | The gfs2_fallocate function in fs/gfs2/file.c in the Linux kernel before 3.0-rc1 does not ensure that the size of a chunk allocation is a multiple of the block size, which allows local users to cause a denial of service (BUG and system crash) by arranging for all resource groups to have too little free space. | ||
| Family: | unix | Class: | patch |
| Reference(s): | RHSA-2011:1065-01 CESA-2011:1065 CVE-2011-1780 CVE-2011-2525 CVE-2011-2689 | Version: | 42 |
| Platform(s): | Red Hat Enterprise Linux 5 CentOS Linux 5 | Product(s): | kernel |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:21948 | |||
| Oval ID: | oval:org.mitre.oval:def:21948 | ||
| Title: | RHSA-2010:0002: PyXML security update (Moderate) | ||
| Description: | The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625. | ||
| Family: | unix | Class: | patch |
| Reference(s): | RHSA-2010:0002-01 CESA-2010:0002 CVE-2009-3720 | Version: | 4 |
| Platform(s): | Red Hat Enterprise Linux 5 CentOS Linux 5 | Product(s): | PyXML |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:21999 | |||
| Oval ID: | oval:org.mitre.oval:def:21999 | ||
| Title: | RHSA-2010:0679: rpm security and bug fix update (Moderate) | ||
| Description: | lib/fsm.c in RPM 4.8.0 and unspecified 4.7.x and 4.6.x versions, and RPM before 4.4.3, does not properly reset the metadata of an executable file during replacement of the file in an RPM package upgrade, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid or (2) setgid file. | ||
| Family: | unix | Class: | patch |
| Reference(s): | RHSA-2010:0679-01 CESA-2010:0679 CVE-2010-2059 | Version: | 4 |
| Platform(s): | Red Hat Enterprise Linux 5 CentOS Linux 5 | Product(s): | rpm |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:22813 | |||
| Oval ID: | oval:org.mitre.oval:def:22813 | ||
| Title: | ELSA-2010:0679: rpm security and bug fix update (Moderate) | ||
| Description: | lib/fsm.c in RPM 4.8.0 and unspecified 4.7.x and 4.6.x versions, and RPM before 4.4.3, does not properly reset the metadata of an executable file during replacement of the file in an RPM package upgrade, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid or (2) setgid file. | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2010:0679-01 CVE-2010-2059 | Version: | 6 |
| Platform(s): | Oracle Linux 5 | Product(s): | rpm |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:22821 | |||
| Oval ID: | oval:org.mitre.oval:def:22821 | ||
| Title: | ELSA-2011:0027: python security, bug fix, and enhancement update (Low) | ||
| Description: | The audioop module in Python 2.7 and 3.2 does not verify the relationships between size arguments and byte string lengths, which allows context-dependent attackers to cause a denial of service (memory corruption and application crash) via crafted arguments, as demonstrated by a call to audioop.reverse with a one-byte string, a different vulnerability than CVE-2010-1634. | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2011:0027-01 CVE-2008-5983 CVE-2009-4134 CVE-2010-1449 CVE-2010-1450 CVE-2010-1634 CVE-2010-2089 | Version: | 29 |
| Platform(s): | Oracle Linux 5 | Product(s): | python |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:22880 | |||
| Oval ID: | oval:org.mitre.oval:def:22880 | ||
| Title: | ELSA-2009:1625: expat security update (Moderate) | ||
| Description: | The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625. | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2009:1625-01 CVE-2009-3560 CVE-2009-3720 | Version: | 13 |
| Platform(s): | Oracle Linux 5 | Product(s): | expat |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:23002 | |||
| Oval ID: | oval:org.mitre.oval:def:23002 | ||
| Title: | ELSA-2010:0002: PyXML security update (Moderate) | ||
| Description: | The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625. | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2010:0002-01 CVE-2009-3720 | Version: | 6 |
| Platform(s): | Oracle Linux 5 | Product(s): | PyXML |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:23218 | |||
| Oval ID: | oval:org.mitre.oval:def:23218 | ||
| Title: | ELSA-2011:0918: curl security update (Moderate) | ||
| Description: | The Curl_input_negotiate function in http_negotiate.c in libcurl 7.10.6 through 7.21.6, as used in curl and other products, always performs credential delegation during GSSAPI authentication, which allows remote servers to impersonate clients via GSSAPI requests. | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2011:0918-01 CVE-2011-2192 | Version: | 6 |
| Platform(s): | Oracle Linux 6 | Product(s): | curl |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:23229 | |||
| Oval ID: | oval:org.mitre.oval:def:23229 | ||
| Title: | ELSA-2011:0492: python security update (Moderate) | ||
| Description: | The urllib and urllib2 modules in Python 2.x before 2.7.2 and 3.x before 3.2.1 process Location headers that specify redirection to file: URLs, which makes it easier for remote attackers to obtain sensitive information or cause a denial of service (resource consumption) via a crafted URL, as demonstrated by the file:///etc/passwd and file:///dev/zero URLs. | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2011:0492-01 CVE-2009-3720 CVE-2010-3493 CVE-2011-1015 CVE-2011-1521 | Version: | 21 |
| Platform(s): | Oracle Linux 5 | Product(s): | python |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:23316 | |||
| Oval ID: | oval:org.mitre.oval:def:23316 | ||
| Title: | DEPRECATED: ELSA-2011:1349: rpm security update (Important) | ||
| Description: | RPM 4.4.x through 4.9.x, probably before 4.9.1.2, allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via an rpm package with crafted headers and offsets that are not properly handled when a package is queried or installed, related to (1) the regionSwab function, (2) the headerLoad function, and (3) multiple functions in rpmio/rpmpgp.c. | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2011:1349-01 CVE-2011-3378 | Version: | 7 |
| Platform(s): | Oracle Linux 6 Oracle Linux 5 | Product(s): | rpm |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:23473 | |||
| Oval ID: | oval:org.mitre.oval:def:23473 | ||
| Title: | ELSA-2011:0554: python security, bug fix, and enhancement update (Moderate) | ||
| Description: | The urllib and urllib2 modules in Python 2.x before 2.7.2 and 3.x before 3.2.1 process Location headers that specify redirection to file: URLs, which makes it easier for remote attackers to obtain sensitive information or cause a denial of service (resource consumption) via a crafted URL, as demonstrated by the file:///etc/passwd and file:///dev/zero URLs. | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2011:0554-01 CVE-2010-3493 CVE-2011-1015 CVE-2011-1521 | Version: | 17 |
| Platform(s): | Oracle Linux 6 | Product(s): | python python-docs |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:27781 | |||
| Oval ID: | oval:org.mitre.oval:def:27781 | ||
| Title: | DEPRECATED: ELSA-2011-1212 -- kernel security and bug fix update (important) | ||
| Description: | [2.6.18-274.3.1.0.1.el5] - [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin) [orabug 12687646] - [scsi] fix scsi hotplug and rescan race [orabug 10260172] - fix filp_close() race (Joe Jin) [orabug 10335998] - fix missing aio_complete() in end_io (Joel Becker) [orabug 10365195] - make xenkbd.abs_pointer=1 by default [orabug 67188919] - [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514] - [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki) [orabug 10315433] - [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258] - [mm] shrink_zone patch (John Sobecki,Chris Mason) [orabug 6086839] - fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042] - [rds] Patch rds to 1.4.2-20 (Andy Grover) [orabug 9471572, 9344105] RDS: Fix BUG_ONs to not fire when in a tasklet ipoib: Fix lockup of the tx queue RDS: Do not call set_page_dirty() with irqs off (Sherman Pun) RDS: Properly unmap when getting a remote access error (Tina Yang) RDS: Fix locking in rds_send_drop_to() - [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson) [orabug 9107465] - [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson) [orabug 9764220] - Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615] - fix overcommit memory to use percpu_counter for el5 (KOSAKI Motohiro, Guru Anbalagane) [orabug 6124033] - [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208] - [ib] fix memory corruption (Andy Grover) [orabug 9972346] - [aio] patch removes limit on number of retries (Srinivas Eeda) [orabug 10044782] - [loop] Do not call loop_unplug for not configured loop device (orabug 10314497) | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2011-1212 CVE-2011-2482 CVE-2011-2491 CVE-2011-2495 CVE-2011-2517 CVE-2011-2519 CVE-2011-2901 | Version: | 4 |
| Platform(s): | Oracle Linux 5 | Product(s): | kernel |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:27793 | |||
| Oval ID: | oval:org.mitre.oval:def:27793 | ||
| Title: | ELSA-2011-2016 -- Unbreakable Enterprise kernel security fix update (important) | ||
| Description: | A [2.6.32-100.28.17.el6] - [net] Extend prot->slab size when add sock extend fields. [2.6.32-100.28.16.el6] - kernel: Fix unlimited socket backlog DoS {CVE-2010-4251} - RDS: Fix congestion issues for loopback - rds: prevent BUG_ON triggering on congestion map updates {CVE-2011-1023} - epoll: prevent creating circular epoll structures {CVE-2011-1082} - fs: fix corrupted OSF partition table parsing {CVE-2011-1163} - fs: Increase OSF partition limit from 8 to 18 {CVE-2011-1163} - netfilter: arp_tables: fix infoleak to userspace {CVE-2011-1170} - netfilter: ip_tables: fix infoleak to userspace {CVE-2011-1171} - ipv6: netfilter: ip6_tables: fix infoleak to userspace {CVE-2011-1172} - [SCSI] mpt2sas: prevent heap overflows and unchecked reads {CVE-2011-1494, CVE-2011-1495} | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2011-2016 CVE-2010-4251 CVE-2011-1023 CVE-2011-1082 CVE-2011-1163 CVE-2011-1170 CVE-2011-1171 CVE-2011-1172 CVE-2011-1494 CVE-2011-1495 | Version: | 5 |
| Platform(s): | Oracle Linux 5 | Product(s): | kernel-uek ofa kernel-uek-debug kernel-uek-debug-devel kernel-uek-devel kernel-uek-doc kernel-uek-firmware kernel-uek-headers |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:27806 | |||
| Oval ID: | oval:org.mitre.oval:def:27806 | ||
| Title: | DEPRECATED: ELSA-2011-0833 -- kernel security and bug fix update (important) | ||
| Description: | [2.6.18-238.12.1.0.1.el5] - [scsi] fix scsi hotplug and rescan race [orabug 10260172] - fix filp_close() race (Joe Jin) [orabug 10335998] - fix missing aio_complete() in end_io (Joel Becker) [orabug 10365195] - make xenkbd.abs_pointer=1 by default [orabug 67188919] - [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514] - [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki) [orabug 10315433] - [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258] - [mm] shrink_zone patch (John Sobecki,Chris Mason) [orabug 6086839] - fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042] - [rds] Patch rds to 1.4.2-20 (Andy Grover) [orabug 9471572, 9344105] RDS: Fix BUG_ONs to not fire when in a tasklet ipoib: Fix lockup of the tx queue RDS: Do not call set_page_dirty() with irqs off (Sherman Pun) RDS: Properly unmap when getting a remote access error (Tina Yang) RDS: Fix locking in rds_send_drop_to() - [qla] fix qla not to query hccr (Guru Anbalagane) [Orabug 8746702] - [nfs] too many getattr and access calls after direct I/O [orabug 9348191] - [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson) [orabug 9107465] - [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson) [orabug 9764220] - Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615] - fix overcommit memory to use percpu_counter for el5 (KOSAKI Motohiro, Guru Anbalagane) [orabug 6124033] - [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208] - [ib] fix memory corruption (Andy Grover) [orabug 9972346] - [aio] patch removes limit on number of retries (Srinivas Eeda) [orabug 10044782] - [loop] Do not call loop_unplug for not configured loop device (orabug 10314497) | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2011-0833 CVE-2011-0726 CVE-2011-1078 CVE-2011-1079 CVE-2011-1080 CVE-2011-1093 CVE-2011-1163 CVE-2011-1166 CVE-2011-1170 CVE-2011-1171 CVE-2011-1172 CVE-2011-1494 CVE-2011-1495 CVE-2011-1577 CVE-2011-1763 | Version: | 4 |
| Platform(s): | Oracle Linux 5 | Product(s): | kernel |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:27865 | |||
| Oval ID: | oval:org.mitre.oval:def:27865 | ||
| Title: | DEPRECATED: ELSA-2011-0927 -- kernel security and bug fix update (important) | ||
| Description: | [2.6.18-238.19.1.0.1.el5] - [scsi] remove printk's when doing I/O to a dead device (John Sobecki, Chris Mason) [orabug 12342275] - [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346] - [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566] - bonding: reread information about speed and duplex when interface goes up (John Haxby) [orabug 11890822] - [scsi] fix scsi hotplug and rescan race [orabug 10260172] - fix filp_close() race (Joe Jin) [orabug 10335998] - fix missing aio_complete() in end_io (Joel Becker) [orabug 10365195] - make xenkbd.abs_pointer=1 by default [orabug 67188919] - [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514] - [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki) [orabug 10315433] - [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258] - [mm] shrink_zone patch (John Sobecki,Chris Mason) [orabug 6086839] - fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042] - [rds] Patch rds to 1.4.2-20 (Andy Grover) [orabug 9471572, 9344105] RDS: Fix BUG_ONs to not fire when in a tasklet ipoib: Fix lockup of the tx queue RDS: Do not call set_page_dirty() with irqs off (Sherman Pun) RDS: Properly unmap when getting a remote access error (Tina Yang) RDS: Fix locking in rds_send_drop_to() - [qla] fix qla not to query hccr (Guru Anbalagane) [Orabug 8746702] - [nfs] too many getattr and access calls after direct I/O [orabug 9348191] - [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson) [orabug 9107465] - [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson) [orabug 9764220] - Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615] - fix overcommit memory to use percpu_counter for el5 (KOSAKI Motohiro, Guru Anbalagane) [orabug 6124033] - [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208] - [ib] fix memory corruption (Andy Grover) [orabug 9972346] - [aio] patch removes limit on number of retries (Srinivas Eeda) [orabug 10044782] - [loop] Do not call loop_unplug for not configured loop device (orabug 10314497) | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2011-0927 CVE-2010-4649 CVE-2011-0695 CVE-2011-0711 CVE-2011-1044 CVE-2011-1182 CVE-2011-1573 CVE-2011-1576 CVE-2011-1593 CVE-2011-1745 CVE-2011-1746 CVE-2011-1776 CVE-2011-1936 CVE-2011-2022 CVE-2011-2213 CVE-2011-2492 | Version: | 4 |
| Platform(s): | Oracle Linux 5 | Product(s): | kernel |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:28004 | |||
| Oval ID: | oval:org.mitre.oval:def:28004 | ||
| Title: | ELSA-2011-2015 -- Oracle Linux 6 Unbreakable Enterprise kernel security fix update (important) | ||
| Description: | [2.6.32-100.28.15.el6] - sctp: fix to calc the INIT/INIT-ACK chunk length correctly is set {CVE-2011-1573} - dccp: fix oops on Reset after close {CVE-2011-1093} - bridge: netfilter: fix information leak {CVE-2011-1080} - Bluetooth: bnep: fix buffer overflow {CVE-2011-1079} - net: don't allow CAP_NET_ADMIN to load non-netdev kernel modules {CVE-2011-1019} - ipip: add module alias for tunl0 tunnel device - gre: add module alias for gre0 tunnel device - drm/radeon/kms: check AA resolve registers on r300 {CVE-2011-1016} - drm/radeon: fix regression with AA resolve checking {CVE-2011-1016} - drm: fix unsigned vs signed comparison issue in modeset ctl ioctl {CVE-2011-1013} - proc: protect mm start_code/end_code in /proc/pid/stat {CVE-2011-0726} - ALSA: caiaq - Fix possible string-buffer overflow {CVE-2011-0712} - xfs: zero proper structure size for geometry calls {CVE-2011-0711} - xfs: prevent leaking uninitialized stack memory in FSGEOMETRY_V1 {CVE-2011-0711} - ima: fix add LSM rule bug {CVE-2011-0006} - IB/uverbs: Handle large number of entries in poll CQ {CVE-2010-4649, CVE-2011-1044} - CAN: Use inode instead of kernel address for /proc file {CVE-2010-4565} [2.6.32-100.28.14.el6] - IB/qib: fix qib compile warning. - IB/core: Allow device-specific per-port sysfs files. - dm crypt: add plain64 iv. - firmware: add firmware for qib. - Infiniband: Add QLogic PCIe QLE InfiniBand host channel adapters support. | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2011-2015 CVE-2010-4565 CVE-2010-4649 CVE-2011-0006 CVE-2011-0711 CVE-2011-0712 CVE-2011-0726 CVE-2011-1013 CVE-2011-1016 CVE-2011-1019 CVE-2011-1044 CVE-2011-1079 CVE-2011-1080 CVE-2011-1093 CVE-2011-1573 | Version: | 5 |
| Platform(s): | Oracle Linux 5 | Product(s): | kernel-uek ofa kernel-uek-debug kernel-uek-debug-devel kernel-uek-devel kernel-uek-doc kernel-uek-firmware kernel-uek-headers |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:28032 | |||
| Oval ID: | oval:org.mitre.oval:def:28032 | ||
| Title: | DEPRECATED: ELSA-2011-0554 -- python security, bug fix, and enhancement update (moderate) | ||
| Description: | python: [2.6.6-20] Resolves: CVE-2010-3493 | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2011-0554 CVE-2010-3493 CVE-2011-1015 CVE-2011-1521 | Version: | 4 |
| Platform(s): | Oracle Linux 6 | Product(s): | python python-docs |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:28060 | |||
| Oval ID: | oval:org.mitre.oval:def:28060 | ||
| Title: | DEPRECATED: ELSA-2011-0492 -- python security update (moderate) | ||
| Description: | [2.4.3-44] - add patch adapted from upstream (patch 208) to add support for building against system expat; add --with-system-expat to configure invocation; remove embedded copy of expat-1.95.8 from the source tree during prep - ensure pyexpat.so gets built by explicitly listing all C modules in the payload in %files, rather than using dynfiles Resolves: CVE-2009-3720 - backport three security fixes to 2.4 (patches 209, 210, 211): Resolves: CVE-2011-1521 Resolves: CVE-2011-1015 Resolves: CVE-2010-3493 | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2011-0492 CVE-2009-3720 CVE-2010-3493 CVE-2011-1015 CVE-2011-1521 | Version: | 4 |
| Platform(s): | Oracle Linux 5 | Product(s): | python |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:28094 | |||
| Oval ID: | oval:org.mitre.oval:def:28094 | ||
| Title: | DEPRECATED: ELSA-2010-0679 -- rpm security and bug fix update (moderate) | ||
| Description: | [4.4.2.3-20.el5_5.1] - make the sbits removal behavior consistent with all the RHELs - add proper suffix for Z branch [4.4.2.3-19] - fix CVE-2010-2059, fails to drop SUID/SGID bits on package upgrade (#626707) - fix SELinux memory leak (#627630), patch from Florian Festi | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2010-0679 CVE-2010-2059 | Version: | 4 |
| Platform(s): | Oracle Linux 5 | Product(s): | rpm |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:29347 | |||
| Oval ID: | oval:org.mitre.oval:def:29347 | ||
| Title: | RHSA-2009:1625 -- expat security update (Moderate) | ||
| Description: | Updated expat packages that fix two security issues are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Expat is a C library written by James Clark for parsing XML documents. Two buffer over-read flaws were found in the way Expat handled malformed UTF-8 sequences when processing XML files. A specially-crafted XML file could cause applications using Expat to crash while parsing the file. (CVE-2009-3560, CVE-2009-3720) | ||
| Family: | unix | Class: | patch |
| Reference(s): | RHSA-2009:1625 CESA-2009:1625-CentOS 3 CESA-2009:1625-CentOS 5 CVE-2009-3560 CVE-2009-3720 | Version: | 3 |
| Platform(s): | Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 3 CentOS Linux 5 | Product(s): | expat |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:6760 | |||
| Oval ID: | oval:org.mitre.oval:def:6760 | ||
| Title: | DSA-1953 expat -- denial of service | ||
| Description: | Jan Lieskovsky discovered an error in expat, an XML parsing C library, when parsing certain UTF-8 sequences, which can be exploited to crash an application using the library. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-1953 CVE-2009-3560 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 5.0 Debian GNU/Linux 4.0 | Product(s): | expat |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:6883 | |||
| Oval ID: | oval:org.mitre.oval:def:6883 | ||
| Title: | Expat Unspecified XML Parsing Remote Denial of Service Vulnerability | ||
| Description: | The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with malformed UTF-8 sequences that trigger a buffer over-read, related to the doProlog function in lib/xmlparse.c, a different vulnerability than CVE-2009-2625 and CVE-2009-3720. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2009-3560 | Version: | 5 |
| Platform(s): | VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:7112 | |||
| Oval ID: | oval:org.mitre.oval:def:7112 | ||
| Title: | Expat UTF-8 Character XML Parsing Remote Denial of Service Vulnerability | ||
| Description: | The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2009-3720 | Version: | 5 |
| Platform(s): | VMWare ESX Server 4.0 | Product(s): | |
| Definition Synopsis: | |||
CPE : Common Platform Enumeration
ExploitDB Exploits
| id | Description |
|---|---|
| 2011-07-27 | SWAT Samba Web Administration Tool Cross-Site Request Forgery PoC |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2013-09-18 | Name : Debian Security Advisory DSA 2389-1 (linux-2.6 - privilege escalation/denial ... File : nvt/deb_2389_1.nasl |
| 2012-10-26 | Name : Ubuntu Update for python3.1 USN-1616-1 File : nvt/gb_ubuntu_USN_1616_1.nasl |
| 2012-10-19 | Name : Ubuntu Update for python2.5 USN-1613-1 File : nvt/gb_ubuntu_USN_1613_1.nasl |
| 2012-10-19 | Name : Ubuntu Update for python2.4 USN-1613-2 File : nvt/gb_ubuntu_USN_1613_2.nasl |
| 2012-10-05 | Name : Ubuntu Update for python2.6 USN-1596-1 File : nvt/gb_ubuntu_USN_1596_1.nasl |
| 2012-10-03 | Name : Ubuntu Update for python2.7 USN-1592-1 File : nvt/gb_ubuntu_USN_1592_1.nasl |
| 2012-09-26 | Name : Gentoo Security Advisory GLSA 201209-06 (expat) File : nvt/glsa_201209_06.nasl |
| 2012-09-10 | Name : Slackware Advisory SSA:2011-210-03 samba File : nvt/esoft_slk_ssa_2011_210_03.nasl |
| 2012-08-17 | Name : CentOS Update for kernel CESA-2012:1156 centos6 File : nvt/gb_CESA-2012_1156_kernel_centos6.nasl |
| 2012-08-17 | Name : RedHat Update for kernel RHSA-2012:1156-01 File : nvt/gb_RHSA-2012_1156-01_kernel.nasl |
| 2012-08-10 | Name : Gentoo Security Advisory GLSA 201206-22 (Samba) File : nvt/glsa_201206_22.nasl |
| 2012-08-10 | Name : Gentoo Security Advisory GLSA 201206-26 (RPM) File : nvt/glsa_201206_26.nasl |
| 2012-08-10 | Name : Gentoo Security Advisory GLSA 201206-29 (mount-cifs) File : nvt/glsa_201206_29.nasl |
| 2012-08-02 | Name : SuSE Update for kernel openSUSE-SU-2012:0206-1 (kernel) File : nvt/gb_suse_2012_0206_1.nasl |
| 2012-08-02 | Name : SuSE Update for kernel openSUSE-SU-2012:0236-1 (kernel) File : nvt/gb_suse_2012_0236_1.nasl |
| 2012-07-30 | Name : CentOS Update for python CESA-2011:0491 centos4 x86_64 File : nvt/gb_CESA-2011_0491_python_centos4_x86_64.nasl |
| 2012-07-30 | Name : CentOS Update for python CESA-2011:0492 centos5 x86_64 File : nvt/gb_CESA-2011_0492_python_centos5_x86_64.nasl |
| 2012-07-30 | Name : CentOS Update for kernel CESA-2011:0833 centos5 x86_64 File : nvt/gb_CESA-2011_0833_kernel_centos5_x86_64.nasl |
| 2012-07-30 | Name : CentOS Update for curl CESA-2011:0918 centos4 x86_64 File : nvt/gb_CESA-2011_0918_curl_centos4_x86_64.nasl |
| 2012-07-30 | Name : CentOS Update for curl CESA-2011:0918 centos5 x86_64 File : nvt/gb_CESA-2011_0918_curl_centos5_x86_64.nasl |
| 2012-07-30 | Name : CentOS Update for kernel CESA-2011:0927 centos5 x86_64 File : nvt/gb_CESA-2011_0927_kernel_centos5_x86_64.nasl |
| 2012-07-30 | Name : CentOS Update for kernel CESA-2011:1065 centos5 x86_64 File : nvt/gb_CESA-2011_1065_kernel_centos5_x86_64.nasl |
| 2012-07-30 | Name : CentOS Update for kernel CESA-2011:1212 centos5 x86_64 File : nvt/gb_CESA-2011_1212_kernel_centos5_x86_64.nasl |
| 2012-07-30 | Name : CentOS Update for libsmbclient CESA-2011:1219 centos5 x86_64 File : nvt/gb_CESA-2011_1219_libsmbclient_centos5_x86_64.nasl |
| 2012-07-30 | Name : CentOS Update for samba CESA-2011:1219 centos4 x86_64 File : nvt/gb_CESA-2011_1219_samba_centos4_x86_64.nasl |
| 2012-07-30 | Name : CentOS Update for samba3x CESA-2011:1220 centos5 x86_64 File : nvt/gb_CESA-2011_1220_samba3x_centos5_x86_64.nasl |
| 2012-07-30 | Name : CentOS Update for popt CESA-2011:1349 centos4 x86_64 File : nvt/gb_CESA-2011_1349_popt_centos4_x86_64.nasl |
| 2012-07-30 | Name : CentOS Update for popt CESA-2011:1349 centos5 x86_64 File : nvt/gb_CESA-2011_1349_popt_centos5_x86_64.nasl |
| 2012-07-30 | Name : CentOS Update for kernel CESA-2012:0007 centos5 File : nvt/gb_CESA-2012_0007_kernel_centos5.nasl |
| 2012-07-09 | Name : RedHat Update for kernel RHSA-2011:1189-01 File : nvt/gb_RHSA-2011_1189-01_kernel.nasl |
| 2012-07-09 | Name : RedHat Update for samba and cifs-utils RHSA-2011:1221-01 File : nvt/gb_RHSA-2011_1221-01_samba_and_cifs-utils.nasl |
| 2012-07-09 | Name : RedHat Update for kernel RHSA-2011:1350-01 File : nvt/gb_RHSA-2011_1350-01_kernel.nasl |
| 2012-07-09 | Name : RedHat Update for kernel RHSA-2011:1465-01 File : nvt/gb_RHSA-2011_1465-01_kernel.nasl |
| 2012-06-06 | Name : RedHat Update for kernel RHSA-2011:0421-01 File : nvt/gb_RHSA-2011_0421-01_kernel.nasl |
| 2012-06-06 | Name : RedHat Update for kernel RHSA-2011:0498-01 File : nvt/gb_RHSA-2011_0498-01_kernel.nasl |
| 2012-06-06 | Name : RedHat Update for Red Hat Enterprise Linux 6.1 kernel RHSA-2011:0542-01 File : nvt/gb_RHSA-2011_0542-01_Red_Hat_Enterprise_Linux_6.1_kernel.nasl |
| 2012-06-06 | Name : RedHat Update for python RHSA-2011:0554-01 File : nvt/gb_RHSA-2011_0554-01_python.nasl |
| 2012-05-04 | Name : Fedora Update for samba FEDORA-2012-6999 File : nvt/gb_fedora_2012_6999_samba_fc15.nasl |
| 2012-04-23 | Name : Fedora Update for rpm FEDORA-2012-5420 File : nvt/gb_fedora_2012_5420_rpm_fc15.nasl |
| 2012-04-23 | Name : Fedora Update for samba FEDORA-2012-5805 File : nvt/gb_fedora_2012_5805_samba_fc15.nasl |
| 2012-04-02 | Name : VMSA-2012-0006 VMware ESXi and ESX address several security issues File : nvt/gb_VMSA-2012-0006.nasl |
| 2012-04-02 | Name : Fedora Update for rpm FEDORA-2011-13766 File : nvt/gb_fedora_2011_13766_rpm_fc16.nasl |
| 2012-03-19 | Name : Fedora Update for cifs-utils FEDORA-2011-10028 File : nvt/gb_fedora_2011_10028_cifs-utils_fc16.nasl |
| 2012-03-16 | Name : VMSA-2011-0004.3 VMware ESX/ESXi SLPD denial of service vulnerability and ESX... File : nvt/gb_VMSA-2011-0004.nasl |
| 2012-03-16 | Name : VMSA-2011-0012.3 VMware ESXi and ESX updates to third party libraries and ESX... File : nvt/gb_VMSA-2011-0012.nasl |
| 2012-03-15 | Name : VMSA-2012-0001 VMware ESXi and ESX updates to third party library and ESX Ser... File : nvt/gb_VMSA-2012-0001.nasl |
| 2012-03-12 | Name : Gentoo Security Advisory GLSA 201203-02 (cURL) File : nvt/glsa_201203_02.nasl |
| 2012-02-13 | Name : Fedora Update for curl FEDORA-2012-0888 File : nvt/gb_fedora_2012_0888_curl_fc15.nasl |
| 2012-02-11 | Name : Debian Security Advisory DSA 2337-1 (xen) File : nvt/deb_2337_1.nasl |
| 2012-02-06 | Name : Mac OS X Multiple Vulnerabilities (2012-001) File : nvt/gb_macosx_su12-001.nasl |
| 2012-01-13 | Name : RedHat Update for kernel RHSA-2012:0007-01 File : nvt/gb_RHSA-2012_0007-01_kernel.nasl |
| 2011-12-23 | Name : Ubuntu Update for python3.1 USN-1314-1 File : nvt/gb_ubuntu_USN_1314_1.nasl |
| 2011-12-05 | Name : Ubuntu Update for linux USN-1286-1 File : nvt/gb_ubuntu_USN_1286_1.nasl |
| 2011-12-02 | Name : Fedora Update for kernel FEDORA-2011-16346 File : nvt/gb_fedora_2011_16346_kernel_fc14.nasl |
| 2011-12-02 | Name : Ubuntu Update for linux USN-1285-1 File : nvt/gb_ubuntu_USN_1285_1.nasl |
| 2011-11-25 | Name : Ubuntu Update for linux USN-1268-1 File : nvt/gb_ubuntu_USN_1268_1.nasl |
| 2011-11-25 | Name : Ubuntu Update for linux-ec2 USN-1269-1 File : nvt/gb_ubuntu_USN_1269_1.nasl |
| 2011-11-25 | Name : Ubuntu Update for linux-fsl-imx51 USN-1271-1 File : nvt/gb_ubuntu_USN_1271_1.nasl |
| 2011-11-25 | Name : Ubuntu Update for linux USN-1272-1 File : nvt/gb_ubuntu_USN_1272_1.nasl |
| 2011-11-25 | Name : Ubuntu Update for linux-mvl-dove USN-1274-1 File : nvt/gb_ubuntu_USN_1274_1.nasl |
| 2011-11-25 | Name : Ubuntu Update for linux-lts-backport-maverick USN-1278-1 File : nvt/gb_ubuntu_USN_1278_1.nasl |
| 2011-11-25 | Name : Ubuntu Update for linux-lts-backport-natty USN-1279-1 File : nvt/gb_ubuntu_USN_1279_1.nasl |
| 2011-11-25 | Name : Ubuntu Update for linux-ti-omap4 USN-1281-1 File : nvt/gb_ubuntu_USN_1281_1.nasl |
| 2011-11-11 | Name : CentOS Update for popt CESA-2011:1349 centos4 i386 File : nvt/gb_CESA-2011_1349_popt_centos4_i386.nasl |
| 2011-11-11 | Name : Ubuntu Update for linux USN-1253-1 File : nvt/gb_ubuntu_USN_1253_1.nasl |
| 2011-11-11 | Name : Ubuntu Update for linux-lts-backport-natty USN-1256-1 File : nvt/gb_ubuntu_USN_1256_1.nasl |
| 2011-11-08 | Name : Fedora Update for kernel FEDORA-2011-15241 File : nvt/gb_fedora_2011_15241_kernel_fc14.nasl |
| 2011-10-31 | Name : Fedora Update for kernel FEDORA-2011-14747 File : nvt/gb_fedora_2011_14747_kernel_fc14.nasl |
| 2011-10-31 | Name : Ubuntu Update for linux-ec2 USN-1239-1 File : nvt/gb_ubuntu_USN_1239_1.nasl |
| 2011-10-31 | Name : Ubuntu Update for linux-mvl-dove USN-1240-1 File : nvt/gb_ubuntu_USN_1240_1.nasl |
| 2011-10-31 | Name : Ubuntu Update for linux-fsl-imx51 USN-1241-1 File : nvt/gb_ubuntu_USN_1241_1.nasl |
| 2011-10-31 | Name : Ubuntu Update for linux-lts-backport-maverick USN-1242-1 File : nvt/gb_ubuntu_USN_1242_1.nasl |
| 2011-10-31 | Name : Ubuntu Update for linux USN-1243-1 File : nvt/gb_ubuntu_USN_1243_1.nasl |
| 2011-10-31 | Name : Ubuntu Update for linux-ti-omap4 USN-1244-1 File : nvt/gb_ubuntu_USN_1244_1.nasl |
| 2011-10-31 | Name : Ubuntu Update for linux-mvl-dove USN-1245-1 File : nvt/gb_ubuntu_USN_1245_1.nasl |
| 2011-10-31 | Name : Ubuntu Update for linux USN-1246-1 File : nvt/gb_ubuntu_USN_1246_1.nasl |
| 2011-10-21 | Name : Ubuntu Update for linux USN-1236-1 File : nvt/gb_ubuntu_USN_1236_1.nasl |
| 2011-10-20 | Name : Mac OS X v10.6.8 Multiple Vulnerabilities (2011-006) File : nvt/gb_macosx_su11-006.nasl |
| 2011-10-14 | Name : Fedora Update for rpm FEDORA-2011-13785 File : nvt/gb_fedora_2011_13785_rpm_fc15.nasl |
| 2011-10-14 | Name : Mandriva Update for rpm MDVA-2011:057 (rpm) File : nvt/gb_mandriva_MDVA_2011_057.nasl |
| 2011-10-14 | Name : Mandriva Update for samba MDVSA-2011:148 (samba) File : nvt/gb_mandriva_MDVSA_2011_148.nasl |
| 2011-10-14 | Name : Ubuntu Update for linux USN-1227-1 File : nvt/gb_ubuntu_USN_1227_1.nasl |
| 2011-10-14 | Name : Ubuntu Update for linux-ti-omap4 USN-1228-1 File : nvt/gb_ubuntu_USN_1228_1.nasl |
| 2011-10-13 | Name : Samba 'etc/mtab' File Appending Local Denial of Service Vulnerability File : nvt/gb_samba_49939.nasl |
| 2011-10-10 | Name : CentOS Update for popt CESA-2011:1349 centos5 i386 File : nvt/gb_CESA-2011_1349_popt_centos5_i386.nasl |
| 2011-10-10 | Name : RedHat Update for rpm RHSA-2011:1349-01 File : nvt/gb_RHSA-2011_1349-01_rpm.nasl |
| 2011-10-10 | Name : Fedora Update for kernel FEDORA-2011-12874 File : nvt/gb_fedora_2011_12874_kernel_fc14.nasl |
| 2011-10-10 | Name : Mandriva Update for rpm MDVSA-2011:143 (rpm) File : nvt/gb_mandriva_MDVSA_2011_143.nasl |
| 2011-10-10 | Name : Ubuntu Update for linux USN-1225-1 File : nvt/gb_ubuntu_USN_1225_1.nasl |
| 2011-10-10 | Name : Ubuntu Update for samba USN-1226-1 File : nvt/gb_ubuntu_USN_1226_1.nasl |
| 2011-10-10 | Name : Ubuntu Update for cifs-utils USN-1226-2 File : nvt/gb_ubuntu_USN_1226_2.nasl |
| 2011-09-30 | Name : Ubuntu Update for linux-ec2 USN-1216-1 File : nvt/gb_ubuntu_USN_1216_1.nasl |
| 2011-09-30 | Name : Ubuntu Update for linux USN-1218-1 File : nvt/gb_ubuntu_USN_1218_1.nasl |
| 2011-09-30 | Name : Ubuntu Update for linux-lts-backport-maverick USN-1219-1 File : nvt/gb_ubuntu_USN_1219_1.nasl |
| 2011-09-30 | Name : Ubuntu Update for linux-ti-omap4 USN-1220-1 File : nvt/gb_ubuntu_USN_1220_1.nasl |
| 2011-09-23 | Name : CentOS Update for kernel CESA-2011:1065 centos5 i386 File : nvt/gb_CESA-2011_1065_kernel_centos5_i386.nasl |
| 2011-09-23 | Name : CentOS Update for kernel CESA-2011:1212 centos5 i386 File : nvt/gb_CESA-2011_1212_kernel_centos5_i386.nasl |
| 2011-09-23 | Name : CentOS Update for libsmbclient CESA-2011:1219 centos5 i386 File : nvt/gb_CESA-2011_1219_libsmbclient_centos5_i386.nasl |
| 2011-09-23 | Name : CentOS Update for samba3x CESA-2011:1220 centos5 i386 File : nvt/gb_CESA-2011_1220_samba3x_centos5_i386.nasl |
| 2011-09-23 | Name : Ubuntu Update for linux USN-1211-1 File : nvt/gb_ubuntu_USN_1211_1.nasl |
| 2011-09-23 | Name : Ubuntu Update for linux-ti-omap4 USN-1212-1 File : nvt/gb_ubuntu_USN_1212_1.nasl |
| 2011-09-21 | Name : Debian Security Advisory DSA 2290-1 (samba) File : nvt/deb_2290_1.nasl |
| 2011-09-21 | Name : FreeBSD Ports: samba34 File : nvt/freebsd_samba340.nasl |
| 2011-09-16 | Name : Ubuntu Update for linux USN-1201-1 File : nvt/gb_ubuntu_USN_1201_1.nasl |
| 2011-09-16 | Name : Ubuntu Update for linux-ti-omap4 USN-1202-1 File : nvt/gb_ubuntu_USN_1202_1.nasl |
| 2011-09-16 | Name : Ubuntu Update for linux-mvl-dove USN-1203-1 File : nvt/gb_ubuntu_USN_1203_1.nasl |
| 2011-09-16 | Name : Ubuntu Update for linux-fsl-imx51 USN-1204-1 File : nvt/gb_ubuntu_USN_1204_1.nasl |
| 2011-09-16 | Name : Ubuntu Update for linux-lts-backport-maverick USN-1205-1 File : nvt/gb_ubuntu_USN_1205_1.nasl |
| 2011-09-16 | Name : Ubuntu Update for linux-mvl-dove USN-1208-1 File : nvt/gb_ubuntu_USN_1208_1.nasl |
| 2011-09-12 | Name : RedHat Update for kernel RHSA-2011:1212-01 File : nvt/gb_RHSA-2011_1212-01_kernel.nasl |
| 2011-09-07 | Name : CentOS Update for samba CESA-2011:1219 centos4 i386 File : nvt/gb_CESA-2011_1219_samba_centos4_i386.nasl |
| 2011-09-07 | Name : RedHat Update for samba RHSA-2011:1219-01 File : nvt/gb_RHSA-2011_1219-01_samba.nasl |
| 2011-09-07 | Name : RedHat Update for samba3x RHSA-2011:1220-01 File : nvt/gb_RHSA-2011_1220-01_samba3x.nasl |
| 2011-08-27 | Name : Fedora Update for kernel FEDORA-2011-11103 File : nvt/gb_fedora_2011_11103_kernel_fc14.nasl |
| 2011-08-24 | Name : Ubuntu Update for linux USN-1189-1 File : nvt/gb_ubuntu_USN_1189_1.nasl |
| 2011-08-24 | Name : Ubuntu Update for linux USN-1193-1 File : nvt/gb_ubuntu_USN_1193_1.nasl |
| 2011-08-19 | Name : RedHat Update for kernel RHSA-2011:1163-01 File : nvt/gb_RHSA-2011_1163-01_kernel.nasl |
| 2011-08-19 | Name : Fedora Update for samba FEDORA-2011-10341 File : nvt/gb_fedora_2011_10341_samba_fc15.nasl |
| 2011-08-19 | Name : Fedora Update for samba FEDORA-2011-10367 File : nvt/gb_fedora_2011_10367_samba_fc14.nasl |
| 2011-08-18 | Name : CentOS Update for curl CESA-2011:0918 centos4 i386 File : nvt/gb_CESA-2011_0918_curl_centos4_i386.nasl |
| 2011-08-12 | Name : Fedora Update for cifs-utils FEDORA-2011-9831 File : nvt/gb_fedora_2011_9831_cifs-utils_fc15.nasl |
| 2011-08-12 | Name : Fedora Update for cifs-utils FEDORA-2011-9847 File : nvt/gb_fedora_2011_9847_cifs-utils_fc14.nasl |
| 2011-08-12 | Name : Ubuntu Update for samba USN-1182-1 File : nvt/gb_ubuntu_USN_1182_1.nasl |
| 2011-08-12 | Name : Ubuntu Update for linux USN-1183-1 File : nvt/gb_ubuntu_USN_1183_1.nasl |
| 2011-08-12 | Name : Ubuntu Update for linux USN-1186-1 File : nvt/gb_ubuntu_USN_1186_1.nasl |
| 2011-08-12 | Name : Ubuntu Update for linux-lts-backport-maverick USN-1187-1 File : nvt/gb_ubuntu_USN_1187_1.nasl |
| 2011-08-09 | Name : CentOS Update for 4Suite CESA-2009:1572 centos3 i386 File : nvt/gb_CESA-2009_1572_4Suite_centos3_i386.nasl |
| 2011-08-09 | Name : CentOS Update for 4Suite CESA-2009:1572 centos4 i386 File : nvt/gb_CESA-2009_1572_4Suite_centos4_i386.nasl |
| 2011-08-09 | Name : CentOS Update for expat CESA-2009:1625 centos3 i386 File : nvt/gb_CESA-2009_1625_expat_centos3_i386.nasl |
| 2011-08-09 | Name : CentOS Update for expat CESA-2009:1625 centos4 i386 File : nvt/gb_CESA-2009_1625_expat_centos4_i386.nasl |
| 2011-08-09 | Name : CentOS Update for expat CESA-2009:1625 centos5 i386 File : nvt/gb_CESA-2009_1625_expat_centos5_i386.nasl |
| 2011-08-09 | Name : CentOS Update for PyXML CESA-2010:0002 centos5 i386 File : nvt/gb_CESA-2010_0002_PyXML_centos5_i386.nasl |
| 2011-08-09 | Name : CentOS Update for popt CESA-2010:0679 centos5 i386 File : nvt/gb_CESA-2010_0679_popt_centos5_i386.nasl |
| 2011-08-09 | Name : CentOS Update for python CESA-2011:0491 centos4 i386 File : nvt/gb_CESA-2011_0491_python_centos4_i386.nasl |
| 2011-08-09 | Name : CentOS Update for python CESA-2011:0492 centos5 i386 File : nvt/gb_CESA-2011_0492_python_centos5_i386.nasl |
| 2011-08-09 | Name : CentOS Update for kernel CESA-2011:0833 centos5 i386 File : nvt/gb_CESA-2011_0833_kernel_centos5_i386.nasl |
| 2011-08-09 | Name : CentOS Update for curl CESA-2011:0918 centos5 i386 File : nvt/gb_CESA-2011_0918_curl_centos5_i386.nasl |
| 2011-08-09 | Name : CentOS Update for kernel CESA-2011:0927 centos5 i386 File : nvt/gb_CESA-2011_0927_kernel_centos5_i386.nasl |
| 2011-08-03 | Name : Debian Security Advisory DSA 2264-1 (linux-2.6) File : nvt/deb_2264_1.nasl |
| 2011-08-03 | Name : Debian Security Advisory DSA 2271-1 (curl) File : nvt/deb_2271_1.nasl |
| 2011-08-02 | Name : Mandriva Update for samba MDVSA-2011:121 (samba) File : nvt/gb_mandriva_MDVSA_2011_121.nasl |
| 2011-07-27 | Name : Fedora Update for cifs-utils FEDORA-2011-9269 File : nvt/gb_fedora_2011_9269_cifs-utils_fc14.nasl |
| 2011-07-27 | Name : Mandriva Update for curl MDVSA-2011:116 (curl) File : nvt/gb_mandriva_MDVSA_2011_116.nasl |
| 2011-07-22 | Name : RedHat Update for Red Hat Enterprise Linux 5.7 kernel RHSA-2011:1065-01 File : nvt/gb_RHSA-2011_1065-01_Red_Hat_Enterprise_Linux_5.7_kernel.nasl |
| 2011-07-18 | Name : RedHat Update for kernel RHSA-2011:0927-01 File : nvt/gb_RHSA-2011_0927-01_kernel.nasl |
| 2011-07-18 | Name : Fedora Update for kernel FEDORA-2011-9130 File : nvt/gb_fedora_2011_9130_kernel_fc15.nasl |
| 2011-07-18 | Name : Ubuntu Update for linux-mvl-dove USN-1159-1 File : nvt/gb_ubuntu_USN_1159_1.nasl |
| 2011-07-18 | Name : Ubuntu Update for linux-ec2 USN-1161-1 File : nvt/gb_ubuntu_USN_1161_1.nasl |
| 2011-07-18 | Name : Ubuntu Update for linux USN-1167-1 File : nvt/gb_ubuntu_USN_1167_1.nasl |
| 2011-07-18 | Name : Ubuntu Update for linux USN-1168-1 File : nvt/gb_ubuntu_USN_1168_1.nasl |
| 2011-07-18 | Name : Ubuntu Update for linux USN-1170-1 File : nvt/gb_ubuntu_USN_1170_1.nasl |
| 2011-07-12 | Name : Fedora Update for kernel FEDORA-2011-7823 File : nvt/gb_fedora_2011_7823_kernel_fc15.nasl |
| 2011-07-12 | Name : Fedora Update for curl FEDORA-2011-8586 File : nvt/gb_fedora_2011_8586_curl_fc15.nasl |
| 2011-07-08 | Name : RedHat Update for curl RHSA-2011:0918-01 File : nvt/gb_RHSA-2011_0918-01_curl.nasl |
| 2011-07-08 | Name : Fedora Update for curl FEDORA-2011-8640 File : nvt/gb_fedora_2011_8640_curl_fc14.nasl |
| 2011-07-08 | Name : Ubuntu Update for linux USN-1160-1 File : nvt/gb_ubuntu_USN_1160_1.nasl |
| 2011-07-08 | Name : Ubuntu Update for linux-mvl-dove USN-1162-1 File : nvt/gb_ubuntu_USN_1162_1.nasl |
| 2011-07-08 | Name : Ubuntu Update for linux-fsl-imx51 USN-1164-1 File : nvt/gb_ubuntu_USN_1164_1.nasl |
| 2011-06-24 | Name : Fedora Update for kernel FEDORA-2011-6447 File : nvt/gb_fedora_2011_6447_kernel_fc13.nasl |
| 2011-06-24 | Name : Ubuntu Update for curl USN-1158-1 File : nvt/gb_ubuntu_USN_1158_1.nasl |
| 2011-06-20 | Name : Fedora Update for kernel FEDORA-2011-7551 File : nvt/gb_fedora_2011_7551_kernel_fc14.nasl |
| 2011-06-10 | Name : Ubuntu Update for linux USN-1146-1 File : nvt/gb_ubuntu_USN_1146_1.nasl |
| 2011-06-07 | Name : Python CGIHTTPServer Module Information Disclosure Vulnerability File : nvt/gb_python_cgi_info_disc_vuln_win.nasl |
| 2011-06-07 | Name : Python Multiple Vulnerabilities (Windows) File : nvt/gb_python_mult_vuln_win.nasl |
| 2011-06-06 | Name : RedHat Update for kernel RHSA-2011:0833-01 File : nvt/gb_RHSA-2011_0833-01_kernel.nasl |
| 2011-06-06 | Name : Ubuntu Update for linux USN-1141-1 File : nvt/gb_ubuntu_USN_1141_1.nasl |
| 2011-06-03 | Name : Ubuntu Update for linux USN-1133-1 File : nvt/gb_ubuntu_USN_1133_1.nasl |
| 2011-05-23 | Name : Mandriva Update for python MDVSA-2011:096 (python) File : nvt/gb_mandriva_MDVSA_2011_096.nasl |
| 2011-05-17 | Name : Fedora Update for kernel FEDORA-2011-6541 File : nvt/gb_fedora_2011_6541_kernel_fc14.nasl |
| 2011-05-10 | Name : Ubuntu Update for linux-source-2.6.15 USN-1111-1 File : nvt/gb_ubuntu_USN_1111_1.nasl |
| 2011-05-06 | Name : RedHat Update for python RHSA-2011:0491-01 File : nvt/gb_RHSA-2011_0491-01_python.nasl |
| 2011-05-06 | Name : RedHat Update for python RHSA-2011:0492-01 File : nvt/gb_RHSA-2011_0492-01_python.nasl |
| 2011-05-06 | Name : SuSE Update for kernel SUSE-SA:2011:020 File : nvt/gb_suse_2011_020.nasl |
| 2011-05-05 | Name : Fedora Update for SimGear FEDORA-2011-5727 File : nvt/gb_fedora_2011_5727_SimGear_fc14.nasl |
| 2011-05-05 | Name : Fedora Update for SimGear FEDORA-2011-5744 File : nvt/gb_fedora_2011_5744_SimGear_fc13.nasl |
| 2011-05-05 | Name : HP-UX Update for Apache Web Server HPSBUX02645 File : nvt/gb_hp_ux_HPSBUX02645.nasl |
| 2011-04-22 | Name : SuSE Update for kernel SUSE-SA:2011:017 File : nvt/gb_suse_2011_017.nasl |
| 2011-03-24 | Name : Fedora Update for whatsup FEDORA-2011-2794 File : nvt/gb_fedora_2011_2794_whatsup_fc13.nasl |
| 2011-03-24 | Name : Fedora Update for whatsup FEDORA-2011-2801 File : nvt/gb_fedora_2011_2801_whatsup_fc14.nasl |
| 2011-03-15 | Name : Fedora Update for kernel FEDORA-2011-2134 File : nvt/gb_fedora_2011_2134_kernel_fc13.nasl |
| 2011-03-07 | Name : Debian Security Advisory DSA 2153-1 (linux-2.6) File : nvt/deb_2153_1.nasl |
| 2011-03-07 | Name : Ubuntu Update for linux vulnerabilities USN-1080-1 File : nvt/gb_ubuntu_USN_1080_1.nasl |
| 2011-03-07 | Name : Ubuntu Update for linux-ec2 vulnerabilities USN-1080-2 File : nvt/gb_ubuntu_USN_1080_2.nasl |
| 2011-03-07 | Name : Ubuntu Update for linux vulnerabilities USN-1081-1 File : nvt/gb_ubuntu_USN_1081_1.nasl |
| 2011-02-11 | Name : Fedora Update for kernel FEDORA-2011-1138 File : nvt/gb_fedora_2011_1138_kernel_fc14.nasl |
| 2011-01-14 | Name : RedHat Update for python RHSA-2011:0027-01 File : nvt/gb_RHSA-2011_0027-01_python.nasl |
| 2010-12-02 | Name : Fedora Update for libtlen FEDORA-2010-17720 File : nvt/gb_fedora_2010_17720_libtlen_fc14.nasl |
| 2010-12-02 | Name : Fedora Update for udunits2 FEDORA-2010-17807 File : nvt/gb_fedora_2010_17807_udunits2_fc13.nasl |
| 2010-12-02 | Name : Fedora Update for udunits2 FEDORA-2010-17819 File : nvt/gb_fedora_2010_17819_udunits2_fc14.nasl |
| 2010-11-23 | Name : Fedora Update for libtlen FEDORA-2010-17732 File : nvt/gb_fedora_2010_17732_libtlen_fc13.nasl |
| 2010-11-23 | Name : Fedora Update for libtlen FEDORA-2010-17762 File : nvt/gb_fedora_2010_17762_libtlen_fc12.nasl |
| 2010-11-16 | Name : Mandriva Update for python MDVSA-2010:215 (python) File : nvt/gb_mandriva_MDVSA_2010_215.nasl |
| 2010-11-16 | Name : Mandriva Update for python MDVSA-2010:216 (python) File : nvt/gb_mandriva_MDVSA_2010_216.nasl |
| 2010-10-10 | Name : FreeBSD Ports: apr File : nvt/freebsd_apr0.nasl |
| 2010-09-22 | Name : Mandriva Update for rpm MDVSA-2010:180 (rpm) File : nvt/gb_mandriva_MDVSA_2010_180.nasl |
| 2010-09-10 | Name : CentOS Update for popt CESA-2010:0678 centos4 i386 File : nvt/gb_CESA-2010_0678_popt_centos4_i386.nasl |
| 2010-09-10 | Name : RedHat Update for rpm RHSA-2010:0678-01 File : nvt/gb_RHSA-2010_0678-01_rpm.nasl |
| 2010-09-10 | Name : RedHat Update for rpm RHSA-2010:0679-01 File : nvt/gb_RHSA-2010_0679-01_rpm.nasl |
| 2010-09-07 | Name : Fedora Update for python3 FEDORA-2010-13388 File : nvt/gb_fedora_2010_13388_python3_fc13.nasl |
| 2010-07-16 | Name : Mandriva Update for python MDVSA-2010:132 (python) File : nvt/gb_mandriva_MDVSA_2010_132.nasl |
| 2010-07-12 | Name : Fedora Update for rpm FEDORA-2010-10617 File : nvt/gb_fedora_2010_10617_rpm_fc12.nasl |
| 2010-07-12 | Name : Fedora Update for rpm FEDORA-2010-9829 File : nvt/gb_fedora_2010_9829_rpm_fc13.nasl |
| 2010-07-06 | Name : Fedora Update for python FEDORA-2010-9565 File : nvt/gb_fedora_2010_9565_python_fc12.nasl |
| 2010-07-02 | Name : SuSE Update for samba SUSE-SA:2010:025 File : nvt/gb_suse_2010_025.nasl |
| 2010-06-18 | Name : Fedora Update for python FEDORA-2010-9652 File : nvt/gb_fedora_2010_9652_python_fc13.nasl |
| 2010-05-17 | Name : Mandriva Update for samba MDVSA-2010:090-1 (samba) File : nvt/gb_mandriva_MDVSA_2010_090_1.nasl |
| 2010-05-07 | Name : Mandriva Update for samba MDVSA-2010:090 (samba) File : nvt/gb_mandriva_MDVSA_2010_090.nasl |
| 2010-04-30 | Name : Mandriva Update for plymouth MDVA-2010:132 (plymouth) File : nvt/gb_mandriva_MDVA_2010_132.nasl |
| 2010-04-16 | Name : Ubuntu Update for cmake vulnerabilities USN-890-6 File : nvt/gb_ubuntu_USN_890_6.nasl |
| 2010-03-16 | Name : Debian Security Advisory DSA 2004-1 (samba) File : nvt/deb_2004_1.nasl |
| 2010-03-12 | Name : Mandriva Update for openssh MDVA-2010:090 (openssh) File : nvt/gb_mandriva_MDVA_2010_090.nasl |
| 2010-02-22 | Name : Samba 'client/mount.cifs.c' Remote Denial of Service Vulnerability File : nvt/samba_38326.nasl |
| 2010-02-19 | Name : Ubuntu Update for xmlrpc-c vulnerabilities USN-890-5 File : nvt/gb_ubuntu_USN_890_5.nasl |
| 2010-01-29 | Name : Ubuntu Update for python-xml vulnerabilities USN-890-4 File : nvt/gb_ubuntu_USN_890_4.nasl |
| 2010-01-25 | Name : Ubuntu Update for python2.4 vulnerabilities USN-890-3 File : nvt/gb_ubuntu_USN_890_3.nasl |
| 2010-01-22 | Name : Ubuntu Update for expat vulnerabilities USN-890-1 File : nvt/gb_ubuntu_USN_890_1.nasl |
| 2010-01-22 | Name : Ubuntu Update for python2.5 vulnerabilities USN-890-2 File : nvt/gb_ubuntu_USN_890_2.nasl |
| 2010-01-19 | Name : CentOS Update for PyXML CESA-2010:0002 centos4 i386 File : nvt/gb_CESA-2010_0002_PyXML_centos4_i386.nasl |
| 2010-01-19 | Name : CentOS Update for PyXML CESA-2010:0002 centos4 x86_64 File : nvt/gb_CESA-2010_0002_PyXML_centos4_x86_64.nasl |
| 2010-01-15 | Name : RedHat Update for PyXML RHSA-2010:0002-01 File : nvt/gb_RHSA-2010_0002-01_PyXML.nasl |
| 2010-01-15 | Name : Mandriva Update for davfs MDVSA-2009:220-1 (davfs) File : nvt/gb_mandriva_MDVSA_2009_220_1.nasl |
| 2010-01-15 | Name : Mandriva Update for expat MDVSA-2009:316-1 (expat) File : nvt/gb_mandriva_MDVSA_2009_316_1.nasl |
| 2010-01-15 | Name : Mandriva Update for expat MDVSA-2009:316-2 (expat) File : nvt/gb_mandriva_MDVSA_2009_316_2.nasl |
| 2010-01-15 | Name : Mandriva Update for expat MDVSA-2009:316-3 (expat) File : nvt/gb_mandriva_MDVSA_2009_316_3.nasl |
| 2009-12-14 | Name : SLES11: Security update for expat File : nvt/sles11_expat0.nasl |
| 2009-12-14 | Name : SLES9: Security update for expat File : nvt/sles9p5064331.nasl |
| 2009-12-10 | Name : RedHat Security Advisory RHSA-2009:1625 File : nvt/RHSA_2009_1625.nasl |
| 2009-12-10 | Name : Fedora Core 10 FEDORA-2009-12690 (expat) File : nvt/fcore_2009_12690.nasl |
| 2009-12-10 | Name : Fedora Core 11 FEDORA-2009-12716 (expat) File : nvt/fcore_2009_12716.nasl |
| 2009-12-10 | Name : Fedora Core 12 FEDORA-2009-12737 (expat) File : nvt/fcore_2009_12737.nasl |
| 2009-12-10 | Name : FreeBSD Ports: expat2 File : nvt/freebsd_expat2.nasl |
| 2009-12-10 | Name : FreeBSD Ports: expat2 File : nvt/freebsd_expat20.nasl |
| 2009-12-10 | Name : Mandriva Security Advisory MDVSA-2009:211-1 (expat) File : nvt/mdksa_2009_211_1.nasl |
| 2009-12-10 | Name : Mandriva Security Advisory MDVSA-2009:212-1 (python) File : nvt/mdksa_2009_212_1.nasl |
| 2009-12-10 | Name : Mandriva Security Advisory MDVSA-2009:213-1 (wxgtk) File : nvt/mdksa_2009_213_1.nasl |
| 2009-12-10 | Name : Mandriva Security Advisory MDVSA-2009:215-1 (audacity) File : nvt/mdksa_2009_215_1.nasl |
| 2009-12-10 | Name : Mandriva Security Advisory MDVSA-2009:217-3 (mozilla-thunderbird) File : nvt/mdksa_2009_217_3.nasl |
| 2009-12-10 | Name : Mandriva Security Advisory MDVSA-2009:218-1 (w3c-libwww) File : nvt/mdksa_2009_218_1.nasl |
| 2009-12-10 | Name : Mandriva Security Advisory MDVSA-2009:219-1 (kompozer) File : nvt/mdksa_2009_219_1.nasl |
| 2009-12-10 | Name : CentOS Security Advisory CESA-2009:1625 (expat) File : nvt/ovcesa2009_1625.nasl |
| 2009-11-23 | Name : SLES10: Security update for expat File : nvt/sles10_expat.nasl |
| 2009-11-23 | Name : SLES11: Security update for expat File : nvt/sles11_expat.nasl |
| 2009-11-23 | Name : SLES9: Security update for expat File : nvt/sles9p5062940.nasl |
| 2009-11-17 | Name : RedHat Security Advisory RHSA-2009:1572 File : nvt/RHSA_2009_1572.nasl |
| 2009-11-17 | Name : CentOS Security Advisory CESA-2009:1572 (4Suite) File : nvt/ovcesa2009_1572.nasl |
| 2009-11-11 | Name : Fedora Core 10 FEDORA-2009-10949 (PyXML) File : nvt/fcore_2009_10949.nasl |
| 2009-11-11 | Name : Fedora Core 10 FEDORA-2009-10956 (python-4Suite-XML) File : nvt/fcore_2009_10956.nasl |
| 2009-11-11 | Name : Fedora Core 11 FEDORA-2009-10972 (python-4Suite-XML) File : nvt/fcore_2009_10972.nasl |
| 2009-11-11 | Name : Fedora Core 11 FEDORA-2009-10987 (expat) File : nvt/fcore_2009_10987.nasl |
| 2009-11-11 | Name : Fedora Core 10 FEDORA-2009-11029 (expat) File : nvt/fcore_2009_11029.nasl |
| 2009-11-11 | Name : Fedora Core 11 FEDORA-2009-11030 (PyXML) File : nvt/fcore_2009_11030.nasl |
| 2009-11-11 | Name : SuSE Security Summary SUSE-SR:2009:018 File : nvt/suse_sr_2009_018.nasl |
| 0000-00-00 | Name : Slackware Advisory SSA:2011-041-02 expat File : nvt/esoft_slk_ssa_2011_041_02.nasl |
| 0000-00-00 | Name : Slackware Advisory SSA:2011-041-03 httpd File : nvt/esoft_slk_ssa_2011_041_03.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 75931 | RPM Package Manager lib/header.c regionSwab() Function Region Offset RPM Pack... |
| 75930 | RPM Package Manager lib/header.c headerLoad() Function Region Offset RPM Pack... |
| 75241 | Linux Kernel SAHF Instruction Emulation Remote DoS |
| 75240 | Linux Kernel Stream Control Transmission Protocol (SCTP) Packet Handling Remo... |
| 74873 | Xen x86_64__addr_ok() Macro Off-by-one Unprivileged Local Host DoS |
| 74872 | Samba smbfs mount.cifs / umount.cifs RLIMIT_FSIZE Value Handling mtab Local C... |
| 74868 | Xen VM Exit CPUID Instruction Emulation Handling Unprivileged Local DoS |
| 74676 | Linux Kernel /proc/PID/io Interface Cross Session User Information Disclosure |
| 74660 | Linux Kernel NFS Server File Locking Local DoS |
| 74658 | Linux Kernel trigger_scan / sched_scan SSID Length Handling Bypass |
| 74657 | Linux Kernel Packet Scheduler API Implementation tc_fill_qdisc() Function NUL... |
| 74656 | Linux Kernel Xen Hypervisor Implementation SMP Guest Malicious User Process L... |
| 74655 | Linux Kernel napi_reuse_skb() Function Crafted VLAN Packet Handling Remote DoS |
| 74654 | Linux Kernel EFI GUID Partition Table (GPT) Implementation Crafted Partition ... |
| 74653 | Linux Kernel net/ipv4/inet_diag.c inet_diag_bc_audit() Function Local DoS |
| 74650 | Linux Kernel sco_sock_getsockopt() Function Local Memory Disclosure |
| 74649 | Linux Kernel Xen Hypervisor Implementation New Event Channel Port Handling Lo... |
| 74642 | Linux Kernel do_replace() Function CAP_NET_ADMIN Capability Local Information... |
| 74635 | Linux Kernel AARESOLVE_OFFSET Memory Overwrite Local Privilege Escalation |
| 74072 | Samba SWAT Change Password Page user Field XSS Samba contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'user' field upon submission to the 'Change password' page. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server. |
| 74071 | Samba SWAT Multiple Function CSRF Samba contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for the manipulation of Samba daemons, and the addition or removal of shares, printers and user accounts . By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification. |
| 73882 | Linux Kernel DCCP net/dccp/input.c dccp_rcv_state_process Function CLOSED End... |
| 73872 | Linux Kernel fs/proc/array.c do_task_stat Function Local ASLR Protection Mech... |
| 73802 | Linux Kernel fs/gfs2/file.c GFS2 gfs2_fallocate() Function Local DoS |
| 73686 | libcurl http_negotiate.c Curl_input_negotiate Function GSSAPI Credential Dele... |
| 73460 | Linux Kernel Bluetooth net/bluetooth/rfcomm/sock.c rfcomm_sock_getsockopt_old... |
| 73459 | Linux Kernel Bluetooth net/bluetooth/l2cap_sock.c l2cap_sock_getsockopt_old()... |
| 73328 | cURL GSSAPI Client Credential Remote Disclosure |
| 73297 | Linux Kernel IPv6 net/ipv6/netfilter/ip6_tables.c CAP_NET_ADMIN Missing Null ... |
| 73296 | Linux Kernel IPv4 net/ipv4/netfilter/ip_tables.c CAP_NET_ADMIN Missing Null C... |
| 73295 | Linux Kernel IPv4 net/ipv4/netfilter/arp_tables.c CAP_NET_ADMIN Missing Null ... |
| 73049 | Linux Kernel fs/partitions/efi.c is_gpt_valid Function EFI GUID Partition Tab... |
| 73048 | Linux Kernel drivers/scsi/mpt2sas/mpt2sas_ctl.c Multiple Function Memory Copy... |
| 73047 | Linux Kernel drivers/scsi/mpt2sas/mpt2sas_ctl.c _ctl_do_mpt_command Function ... |
| 73046 | Linux Kernel fs/partitions/osf.c osf_partition Function Partition Table Parsi... |
| 73045 | Linux Kernel drivers/char/agp/generic.c agp_generic_remove_memory Function AG... |
| 73043 | Linux Kernel drivers/char/agp/generic.c Multiple Function Memory Page Call Lo... |
| 73042 | Linux Kernel drivers/char/agp/generic.c agp_generic_insert_memory Function AG... |
| 72993 | Linux Kernel drivers/infiniband/core/uverbs_cmd.c ib_uverbs_poll_cq Function ... |
| 71992 | Linux Kernel kernel/pid.c next_pidmap() Function Local DoS Linux Kernel contains a flaw that may allow a local denial of service. The issue is triggered when the next_pidmap() function in kernel/pid.c is exploited via a specially crafted 'getdents()' system call, resulting in a denial of service. |
| 71656 | Linux Kernel net/bluetooth/bnep/sock.c bnep_sock_ioctl() System Information L... |
| 71653 | Linux Kernel rt_*sigqueueinfo() Functions SI_TKILL Signal Spoofing |
| 71649 | Linux Kernel drivers/infiniband/core/uverbs_cmd.c ib_uverbs_poll_cq Function ... |
| 71480 | Linux Kernel cm_work_handler() Function InfiniBand Request Handling DoS |
| 71361 | Python CGIHTTPServer Module cgi-bin Code Disclosure Python contains a flaw that may lead to an unauthorized information disclosure. Â The issue is triggered when the 'CGIHTTPServer' module does not handle HTTP requests to scripts in the 'cgi-bin' directory correctly, which will disclose CGI script source code to a remote attacker via crafted requests to the server. |
| 71331 | Xen xen/arch/x86/domain.c arch_set_info_guest() Pagetable Local DoS Xen contains a flaw that may allow a local denial of service. The issue is triggered when the 'arch_set_info_guest()' function in 'xen/arch/x86/domain.c' fails to properly verify the presence of a valid usermode pagetable, resulting in a loss of availability. |
| 71330 | Python urllib.request file:// URL Handler Redirect Issue Python contains a flaw related to the urllib/urlib2 redirect handling allowing file:// URL schemes. This may allow a remote attacker to use a crafted HTTP redirect response to disclose sensitive information or cause a denial of service via resource consumption. |
| 70950 | Linux Kernel fs/xfs/xfs_fsops.c xfs_fs_geometry() Local Memory Disclosure Linux Kernel contains a flaw that may lead to an unauthorized information disclosure. Â The issue is triggered when the 'xfs_fs_geometry()' function in 'fs/xfs/xfs_fsops.c' fails to properly initialize the 'logsunit' member of the 'xfs_fsop_geom_t' structure, which will disclose kernel stack memory to a local attacker. |
| 68739 | Python smptd Module smtpd.py Race Condition TCP Connection Termination Multip... |
| 65151 | Python Audioop Module audioop.reverse Call Crafted Argument DoS |
| 65144 | RPM Package Manager Package Upgrade POSIX File Capabilities Weakness |
| 65143 | RPM Package Manager Package Upgrade SetUID/SetGID Weakness |
| 64957 | Python Audioop Module audioop.c Multiple Function Overflows |
| 62186 | Samba mount.cifs Symlink Arbitrary File Access |
| 62155 | Samba smbfs mount.cifs client/mount.cifs.c Crafted String mtab Corruption Loc... |
| 60797 | Expat libexpat lib/xmltok.c big2_toUtf8 Function UTF-8 XML Document Handling ... |
| 59737 | Expat libexpat lib/xmltok_impl.c updatePosition Function UTF-8 XML Document H... |
Information Assurance Vulnerability Management (IAVM)
| Date | Description |
|---|---|
| 2015-07-16 | IAVM : 2015-A-0150 - Multiple Security Vulnerabilities in Juniper Networks CTPView Severity : Category I - VMSKEY : V0061073 |
| 2012-04-12 | IAVM : 2012-A-0056 - Multiple Vulnerabilities in VMWare ESX 4.0 and ESXi 4.0 Severity : Category I - VMSKEY : V0031979 |
| 2012-02-02 | IAVM : 2012-A-0020 - Multiple Vulnerabilities in VMware ESX 4.1 and ESXi 4.1 Severity : Category I - VMSKEY : V0031252 |
| 2011-10-27 | IAVM : 2011-A-0147 - Multiple Vulnerabilities in VMware ESX and ESXi Severity : Category I - VMSKEY : V0030545 |
| 2011-05-12 | IAVM : 2011-A-0066 - Multiple Vulnerabilities in VMware Products Severity : Category I - VMSKEY : V0027158 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | Expat xml UTF-8 buffer over-read attempt RuleID : 24070 - Revision : 3 - Type : FILE-OTHER |
| 2014-01-10 | Expat xml UTF-8 buffer over-read attempt RuleID : 24069 - Revision : 3 - Type : FILE-OTHER |
| 2014-01-10 | Expat xml UTF-8 bufer over-read attempt RuleID : 24068 - Revision : 3 - Type : FILE-OTHER |
| 2014-01-10 | Expat xml UTF-8 buffer over-read attempt RuleID : 24067 - Revision : 3 - Type : FILE-OTHER |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2017-05-08 | Name : An application installed on the remote host is affected by multiple vulnerabi... File : itunes_12_6.nasl - Type : ACT_GATHER_INFO |
| 2017-05-08 | Name : An application running on the remote host is affected by multiple vulnerabili... File : itunes_12_6_banner.nasl - Type : ACT_GATHER_INFO |
| 2017-05-08 | Name : The remote host contains an application that is affected by multiple vulnerab... File : macos_itunes_12_6.nasl - Type : ACT_GATHER_INFO |
| 2016-11-30 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_18449f92ab3911e68011005056925db4.nasl - Type : ACT_GATHER_INFO |
| 2016-06-22 | Name : The remote OracleVM host is missing a security update. File : oraclevm_OVMSA-2016-0056.nasl - Type : ACT_GATHER_INFO |
| 2016-06-22 | Name : The remote OracleVM host is missing one or more security updates. File : oraclevm_OVMSA-2016-0077.nasl - Type : ACT_GATHER_INFO |
| 2016-03-08 | Name : The remote VMware ESX host is missing a security-related patch. File : vmware_VMSA-2010-0004_remote.nasl - Type : ACT_GATHER_INFO |
| 2016-03-04 | Name : The remote VMware ESX / ESXi host is missing a security-related patch. File : vmware_VMSA-2011-0004_remote.nasl - Type : ACT_GATHER_INFO |
| 2016-03-04 | Name : The remote VMware ESX / ESXi host is missing a security-related patch. File : vmware_VMSA-2011-0012_remote.nasl - Type : ACT_GATHER_INFO |
| 2016-03-03 | Name : The remote VMware ESXi / ESX host is missing a security-related patch. File : vmware_VMSA-2012-0001_remote.nasl - Type : ACT_GATHER_INFO |
| 2016-03-03 | Name : The remote VMware ESXi / ESX host is missing a security-related patch. File : vmware_VMSA-2012-0006_remote.nasl - Type : ACT_GATHER_INFO |
| 2015-05-20 | Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2012-1391-1.nasl - Type : ACT_GATHER_INFO |
| 2015-05-20 | Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2012-1708-1.nasl - Type : ACT_GATHER_INFO |
| 2015-05-20 | Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2013-1832-1.nasl - Type : ACT_GATHER_INFO |
| 2015-05-20 | Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2014-0536-1.nasl - Type : ACT_GATHER_INFO |
| 2015-05-20 | Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2015-0812-1.nasl - Type : ACT_GATHER_INFO |
| 2015-01-19 | Name : The remote Solaris system is missing a security patch for third-party software. File : solaris11_python_20130313.nasl - Type : ACT_GATHER_INFO |
| 2014-12-15 | Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL15905.nasl - Type : ACT_GATHER_INFO |
| 2014-11-26 | Name : The remote OracleVM host is missing one or more security updates. File : oraclevm_OVMSA-2013-0039.nasl - Type : ACT_GATHER_INFO |
| 2014-11-17 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2011-1090.nasl - Type : ACT_GATHER_INFO |
| 2014-11-17 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2011-1408.nasl - Type : ACT_GATHER_INFO |
| 2014-11-08 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2012-1200.nasl - Type : ACT_GATHER_INFO |
| 2014-07-22 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1253.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : openSUSE-2012-342.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : openSUSE-2012-756.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_kernel-110414.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_kernel-110726.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_kernel-111026.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_kernel-120104.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_ldapsmb-110727.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_libpython2_6-1_0-101028.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_libpython2_6-1_0-110506.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_rpm-111010.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_xen-201105-110510.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_4_curl-120131.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_4_kernel-110426.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_4_kernel-110726.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_4_kernel-111026.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_4_kernel-120104.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_4_ldapsmb-110728.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_4_libpython2_6-1_0-110506.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_4_rpm-111010.nasl - Type : ACT_GATHER_INFO |
| 2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_4_xen-201105-110510.nasl - Type : ACT_GATHER_INFO |
| 2014-04-16 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_9aecb94cc1ad11e3a5ac001b21614864.nasl - Type : ACT_GATHER_INFO |
| 2014-01-07 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201401-04.nasl - Type : ACT_GATHER_INFO |
| 2013-11-13 | Name : The remote VMware ESXi 5.0 host is affected by multiple vulnerabilities. File : vmware_esxi_5_0_build_608089_remote.nasl - Type : ACT_GATHER_INFO |
| 2013-09-28 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201309-24.nasl - Type : ACT_GATHER_INFO |
| 2013-09-04 | Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2011-14.nasl - Type : ACT_GATHER_INFO |
| 2013-09-04 | Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2011-26.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2009-1572.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1625.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2010-0002.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0678.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0679.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0421.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0491.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0492.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0498.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0833.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0918.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-0927.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-1189.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-1212.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-1219.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-1220.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-1221.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-1349.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-1350.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-1465.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-2014.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-2015.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-2016.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-2024.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-2025.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-2033.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-2037.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-2038.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-0007.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-1156.nasl - Type : ACT_GATHER_INFO |
| 2013-06-29 | Name : The remote CentOS host is missing a security update. File : centos_RHSA-2009-1572.nasl - Type : ACT_GATHER_INFO |
| 2013-06-29 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-0833.nasl - Type : ACT_GATHER_INFO |
| 2013-03-08 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1093-1.nasl - Type : ACT_GATHER_INFO |
| 2013-01-25 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_python-randomisation-update-120516.nasl - Type : ACT_GATHER_INFO |
| 2013-01-25 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_python-randomisation-update-120517.nasl - Type : ACT_GATHER_INFO |
| 2013-01-24 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0883.nasl - Type : ACT_GATHER_INFO |
| 2013-01-24 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1106.nasl - Type : ACT_GATHER_INFO |
| 2013-01-24 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1163.nasl - Type : ACT_GATHER_INFO |
| 2013-01-24 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1813.nasl - Type : ACT_GATHER_INFO |
| 2013-01-18 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1695-1.nasl - Type : ACT_GATHER_INFO |
| 2012-12-28 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_ofed-8386.nasl - Type : ACT_GATHER_INFO |
| 2012-10-25 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1616-1.nasl - Type : ACT_GATHER_INFO |
| 2012-10-24 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-8324.nasl - Type : ACT_GATHER_INFO |
| 2012-10-24 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-8325.nasl - Type : ACT_GATHER_INFO |
| 2012-10-18 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1613-1.nasl - Type : ACT_GATHER_INFO |
| 2012-10-18 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1613-2.nasl - Type : ACT_GATHER_INFO |
| 2012-10-05 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1596-1.nasl - Type : ACT_GATHER_INFO |
| 2012-10-03 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1592-1.nasl - Type : ACT_GATHER_INFO |
| 2012-09-25 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201209-06.nasl - Type : ACT_GATHER_INFO |
| 2012-08-16 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2012-1156.nasl - Type : ACT_GATHER_INFO |
| 2012-08-16 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20120814_kernel_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-15 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-1156.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing a security update. File : sl_20091110_4Suite_on_SL3_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20091207_expat_on_SL3_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing a security update. File : sl_20100104_PyXML_on_SL4_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20100907_rpm_on_SL4_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20100907_rpm_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110113_python_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110407_kernel_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110505_python_on_SL4_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110510_kernel_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110519_kernel_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110519_python_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110531_kernel_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110705_curl_on_SL4_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110715_kernel_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110823_kernel_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110829_samba3x_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110829_samba_and_cifs_utils_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110829_samba_on_SL4_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110906_kernel_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20111003_rpm_on_SL4_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20111005_kernel_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20111122_kernel_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
| 2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20120110_kernel_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
| 2012-06-26 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201206-29.nasl - Type : ACT_GATHER_INFO |
| 2012-06-25 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201206-22.nasl - Type : ACT_GATHER_INFO |
| 2012-06-25 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201206-26.nasl - Type : ACT_GATHER_INFO |
| 2012-05-17 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-7384.nasl - Type : ACT_GATHER_INFO |
| 2012-05-17 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-7515.nasl - Type : ACT_GATHER_INFO |
| 2012-05-17 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-7665.nasl - Type : ACT_GATHER_INFO |
| 2012-05-17 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-7729.nasl - Type : ACT_GATHER_INFO |
| 2012-05-17 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-7811.nasl - Type : ACT_GATHER_INFO |
| 2012-05-17 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-7915.nasl - Type : ACT_GATHER_INFO |
| 2012-04-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_python-8080.nasl - Type : ACT_GATHER_INFO |
| 2012-04-20 | Name : The remote web server is affected by multiple vulnerabilities. File : hpsmh_7_0_0_24.nasl - Type : ACT_GATHER_INFO |
| 2012-03-30 | Name : The remote VMware ESXi / ESX host is missing one or more security-related pat... File : vmware_VMSA-2012-0006.nasl - Type : ACT_GATHER_INFO |
| 2012-03-06 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201203-02.nasl - Type : ACT_GATHER_INFO |
| 2012-02-02 | Name : The remote host is missing a Mac OS X update that fixes several security vuln... File : macosx_10_7_3.nasl - Type : ACT_GATHER_INFO |
| 2012-02-02 | Name : The remote host is missing a Mac OS X update that fixes multiple security vul... File : macosx_SecUpd2012-001.nasl - Type : ACT_GATHER_INFO |
| 2012-01-31 | Name : The remote VMware ESXi / ESX host is missing one or more security-related pat... File : vmware_VMSA-2012-0001.nasl - Type : ACT_GATHER_INFO |
| 2012-01-24 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-7918.nasl - Type : ACT_GATHER_INFO |
| 2012-01-18 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2389.nasl - Type : ACT_GATHER_INFO |
| 2012-01-12 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2012-0007.nasl - Type : ACT_GATHER_INFO |
| 2012-01-11 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-0007.nasl - Type : ACT_GATHER_INFO |
| 2011-12-20 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1314-1.nasl - Type : ACT_GATHER_INFO |
| 2011-12-14 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_kernel-111202.nasl - Type : ACT_GATHER_INFO |
| 2011-12-13 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_cifs-mount-110815.nasl - Type : ACT_GATHER_INFO |
| 2011-12-13 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_kernel-110823.nasl - Type : ACT_GATHER_INFO |
| 2011-12-13 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_kernel-110824.nasl - Type : ACT_GATHER_INFO |
| 2011-12-13 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_popt-111010.nasl - Type : ACT_GATHER_INFO |
| 2011-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_cifs-mount-7671.nasl - Type : ACT_GATHER_INFO |
| 2011-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-7516.nasl - Type : ACT_GATHER_INFO |
| 2011-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-7666.nasl - Type : ACT_GATHER_INFO |
| 2011-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-7812.nasl - Type : ACT_GATHER_INFO |
| 2011-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_popt-7792.nasl - Type : ACT_GATHER_INFO |
| 2011-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_python-7506.nasl - Type : ACT_GATHER_INFO |
| 2011-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_xen-201106-7547.nasl - Type : ACT_GATHER_INFO |
| 2011-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_xen-7654.nasl - Type : ACT_GATHER_INFO |
| 2011-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_xen-7699.nasl - Type : ACT_GATHER_INFO |
| 2011-12-05 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1286-1.nasl - Type : ACT_GATHER_INFO |
| 2011-11-30 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1285-1.nasl - Type : ACT_GATHER_INFO |
| 2011-11-26 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1269-1.nasl - Type : ACT_GATHER_INFO |
| 2011-11-26 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1278-1.nasl - Type : ACT_GATHER_INFO |
| 2011-11-26 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1279-1.nasl - Type : ACT_GATHER_INFO |
| 2011-11-26 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1281-1.nasl - Type : ACT_GATHER_INFO |
| 2011-11-23 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1465.nasl - Type : ACT_GATHER_INFO |
| 2011-11-22 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1268-1.nasl - Type : ACT_GATHER_INFO |
| 2011-11-22 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1271-1.nasl - Type : ACT_GATHER_INFO |
| 2011-11-22 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1272-1.nasl - Type : ACT_GATHER_INFO |
| 2011-11-22 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1274-1.nasl - Type : ACT_GATHER_INFO |
| 2011-11-10 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1256-1.nasl - Type : ACT_GATHER_INFO |
| 2011-11-09 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1253-1.nasl - Type : ACT_GATHER_INFO |
| 2011-11-07 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2337.nasl - Type : ACT_GATHER_INFO |
| 2011-11-03 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_popt-7793.nasl - Type : ACT_GATHER_INFO |
| 2011-10-26 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1239-1.nasl - Type : ACT_GATHER_INFO |
| 2011-10-26 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1240-1.nasl - Type : ACT_GATHER_INFO |
| 2011-10-26 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1241-1.nasl - Type : ACT_GATHER_INFO |
| 2011-10-26 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1242-1.nasl - Type : ACT_GATHER_INFO |
| 2011-10-26 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1243-1.nasl - Type : ACT_GATHER_INFO |
| 2011-10-26 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1244-1.nasl - Type : ACT_GATHER_INFO |
| 2011-10-26 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1245-1.nasl - Type : ACT_GATHER_INFO |
| 2011-10-26 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1246-1.nasl - Type : ACT_GATHER_INFO |
| 2011-10-24 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_cifs-mount-7656.nasl - Type : ACT_GATHER_INFO |
| 2011-10-24 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-7734.nasl - Type : ACT_GATHER_INFO |
| 2011-10-24 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_xen-201108-7703.nasl - Type : ACT_GATHER_INFO |
| 2011-10-21 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1236-1.nasl - Type : ACT_GATHER_INFO |
| 2011-10-14 | Name : The remote VMware ESXi / ESX host is missing one or more security-related pat... File : vmware_VMSA-2011-0012.nasl - Type : ACT_GATHER_INFO |
| 2011-10-13 | Name : The remote host is missing a Mac OS X update that fixes several security issues. File : macosx_10_7_2.nasl - Type : ACT_GATHER_INFO |
| 2011-10-13 | Name : The remote host is missing a Mac OS X update that fixes several security issues. File : macosx_SecUpd2011-006.nasl - Type : ACT_GATHER_INFO |
| 2011-10-13 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1228-1.nasl - Type : ACT_GATHER_INFO |
| 2011-10-12 | Name : The remote Fedora host is missing a security update. File : fedora_2011-13785.nasl - Type : ACT_GATHER_INFO |
| 2011-10-12 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-148.nasl - Type : ACT_GATHER_INFO |
| 2011-10-12 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1227-1.nasl - Type : ACT_GATHER_INFO |
| 2011-10-10 | Name : The remote Fedora host is missing a security update. File : fedora_2011-13766.nasl - Type : ACT_GATHER_INFO |
| 2011-10-06 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-143.nasl - Type : ACT_GATHER_INFO |
| 2011-10-06 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1350.nasl - Type : ACT_GATHER_INFO |
| 2011-10-05 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1225-1.nasl - Type : ACT_GATHER_INFO |
| 2011-10-05 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1226-1.nasl - Type : ACT_GATHER_INFO |
| 2011-10-05 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1226-2.nasl - Type : ACT_GATHER_INFO |
| 2011-10-04 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-1349.nasl - Type : ACT_GATHER_INFO |
| 2011-10-04 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1349.nasl - Type : ACT_GATHER_INFO |
| 2011-09-30 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1218-1.nasl - Type : ACT_GATHER_INFO |
| 2011-09-30 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1219-1.nasl - Type : ACT_GATHER_INFO |
| 2011-09-30 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1220-1.nasl - Type : ACT_GATHER_INFO |
| 2011-09-27 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1216-1.nasl - Type : ACT_GATHER_INFO |
| 2011-09-26 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2310.nasl - Type : ACT_GATHER_INFO |
| 2011-09-23 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-1065.nasl - Type : ACT_GATHER_INFO |
| 2011-09-23 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-1212.nasl - Type : ACT_GATHER_INFO |
| 2011-09-23 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-1220.nasl - Type : ACT_GATHER_INFO |
| 2011-09-22 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1211-1.nasl - Type : ACT_GATHER_INFO |
| 2011-09-22 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1212-1.nasl - Type : ACT_GATHER_INFO |
| 2011-09-15 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1208-1.nasl - Type : ACT_GATHER_INFO |
| 2011-09-14 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1201-1.nasl - Type : ACT_GATHER_INFO |
| 2011-09-14 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1202-1.nasl - Type : ACT_GATHER_INFO |
| 2011-09-14 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1203-1.nasl - Type : ACT_GATHER_INFO |
| 2011-09-14 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1204-1.nasl - Type : ACT_GATHER_INFO |
| 2011-09-14 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1205-1.nasl - Type : ACT_GATHER_INFO |
| 2011-09-09 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2303.nasl - Type : ACT_GATHER_INFO |
| 2011-09-07 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1212.nasl - Type : ACT_GATHER_INFO |
| 2011-09-01 | Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12812.nasl - Type : ACT_GATHER_INFO |
| 2011-08-30 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-1219.nasl - Type : ACT_GATHER_INFO |
| 2011-08-30 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1219.nasl - Type : ACT_GATHER_INFO |
| 2011-08-30 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1220.nasl - Type : ACT_GATHER_INFO |
| 2011-08-30 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1221.nasl - Type : ACT_GATHER_INFO |
| 2011-08-24 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1189.nasl - Type : ACT_GATHER_INFO |
| 2011-08-23 | Name : The remote Fedora host is missing a security update. File : fedora_2011-10028.nasl - Type : ACT_GATHER_INFO |
| 2011-08-23 | Name : The remote Fedora host is missing a security update. File : fedora_2011-11103.nasl - Type : ACT_GATHER_INFO |
| 2011-08-20 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1189-1.nasl - Type : ACT_GATHER_INFO |
| 2011-08-20 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1193-1.nasl - Type : ACT_GATHER_INFO |
| 2011-08-17 | Name : The remote Fedora host is missing a security update. File : fedora_2011-10341.nasl - Type : ACT_GATHER_INFO |
| 2011-08-17 | Name : The remote Fedora host is missing a security update. File : fedora_2011-10367.nasl - Type : ACT_GATHER_INFO |
| 2011-08-17 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_56f4b3a6c82c11e0a49800215c6a37bb.nasl - Type : ACT_GATHER_INFO |
| 2011-08-09 | Name : The remote Fedora host is missing a security update. File : fedora_2011-9831.nasl - Type : ACT_GATHER_INFO |
| 2011-08-09 | Name : The remote Fedora host is missing a security update. File : fedora_2011-9847.nasl - Type : ACT_GATHER_INFO |
| 2011-08-09 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1186-1.nasl - Type : ACT_GATHER_INFO |
| 2011-08-09 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1187-1.nasl - Type : ACT_GATHER_INFO |
| 2011-08-08 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2290.nasl - Type : ACT_GATHER_INFO |
| 2011-08-04 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1183-1.nasl - Type : ACT_GATHER_INFO |
| 2011-08-03 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1182-1.nasl - Type : ACT_GATHER_INFO |
| 2011-08-01 | Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2011-210-03.nasl - Type : ACT_GATHER_INFO |
| 2011-07-29 | Name : The remote Samba server is affected by multiple vulnerabilities. File : samba_3_5_10.nasl - Type : ACT_GATHER_INFO |
| 2011-07-28 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-121.nasl - Type : ACT_GATHER_INFO |
| 2011-07-26 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_kernel-110718.nasl - Type : ACT_GATHER_INFO |
| 2011-07-25 | Name : The remote Fedora host is missing a security update. File : fedora_2011-9269.nasl - Type : ACT_GATHER_INFO |
| 2011-07-25 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-116.nasl - Type : ACT_GATHER_INFO |
| 2011-07-22 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1065.nasl - Type : ACT_GATHER_INFO |
| 2011-07-19 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-0927.nasl - Type : ACT_GATHER_INFO |
| 2011-07-18 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1168-1.nasl - Type : ACT_GATHER_INFO |
| 2011-07-18 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1170-1.nasl - Type : ACT_GATHER_INFO |
| 2011-07-15 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0927.nasl - Type : ACT_GATHER_INFO |
| 2011-07-14 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1159-1.nasl - Type : ACT_GATHER_INFO |
| 2011-07-14 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1161-1.nasl - Type : ACT_GATHER_INFO |
| 2011-07-14 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1167-1.nasl - Type : ACT_GATHER_INFO |
| 2011-07-13 | Name : The remote Fedora host is missing a security update. File : fedora_2011-9130.nasl - Type : ACT_GATHER_INFO |
| 2011-07-07 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1164-1.nasl - Type : ACT_GATHER_INFO |
| 2011-07-06 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-0918.nasl - Type : ACT_GATHER_INFO |
| 2011-07-06 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0918.nasl - Type : ACT_GATHER_INFO |
| 2011-07-06 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1162-1.nasl - Type : ACT_GATHER_INFO |
| 2011-07-05 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2271.nasl - Type : ACT_GATHER_INFO |
| 2011-07-05 | Name : The remote Fedora host is missing a security update. File : fedora_2011-8640.nasl - Type : ACT_GATHER_INFO |
| 2011-06-30 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-7568.nasl - Type : ACT_GATHER_INFO |
| 2011-06-29 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1160-1.nasl - Type : ACT_GATHER_INFO |
| 2011-06-27 | Name : The remote Fedora host is missing a security update. File : fedora_2011-8586.nasl - Type : ACT_GATHER_INFO |
| 2011-06-24 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1158-1.nasl - Type : ACT_GATHER_INFO |
| 2011-06-22 | Name : The remote Fedora host is missing a security update. File : fedora_2011-6447.nasl - Type : ACT_GATHER_INFO |
| 2011-06-20 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2264.nasl - Type : ACT_GATHER_INFO |
| 2011-06-13 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1111-1.nasl - Type : ACT_GATHER_INFO |
| 2011-06-13 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1133-1.nasl - Type : ACT_GATHER_INFO |
| 2011-06-13 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1141-1.nasl - Type : ACT_GATHER_INFO |
| 2011-06-13 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1146-1.nasl - Type : ACT_GATHER_INFO |
| 2011-06-10 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2240.nasl - Type : ACT_GATHER_INFO |
| 2011-06-07 | Name : The remote Fedora host is missing a security update. File : fedora_2011-7823.nasl - Type : ACT_GATHER_INFO |
| 2011-06-01 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0833.nasl - Type : ACT_GATHER_INFO |
| 2011-06-01 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_xen-201105-110505.nasl - Type : ACT_GATHER_INFO |
| 2011-05-25 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_libpython2_6-1_0-110506.nasl - Type : ACT_GATHER_INFO |
| 2011-05-25 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_python-7509.nasl - Type : ACT_GATHER_INFO |
| 2011-05-23 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-096.nasl - Type : ACT_GATHER_INFO |
| 2011-05-20 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0542.nasl - Type : ACT_GATHER_INFO |
| 2011-05-20 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0554.nasl - Type : ACT_GATHER_INFO |
| 2011-05-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_libpython2_6-1_0-110506.nasl - Type : ACT_GATHER_INFO |
| 2011-05-11 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0498.nasl - Type : ACT_GATHER_INFO |
| 2011-05-10 | Name : The remote Fedora host is missing a security update. File : fedora_2011-6541.nasl - Type : ACT_GATHER_INFO |
| 2011-05-06 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-0491.nasl - Type : ACT_GATHER_INFO |
| 2011-05-06 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-0492.nasl - Type : ACT_GATHER_INFO |
| 2011-05-06 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0491.nasl - Type : ACT_GATHER_INFO |
| 2011-05-06 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0492.nasl - Type : ACT_GATHER_INFO |
| 2011-05-05 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_kernel-110413.nasl - Type : ACT_GATHER_INFO |
| 2011-05-05 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_libpython2_6-1_0-101028.nasl - Type : ACT_GATHER_INFO |
| 2011-05-02 | Name : The remote Fedora host is missing a security update. File : fedora_2011-5727.nasl - Type : ACT_GATHER_INFO |
| 2011-05-02 | Name : The remote Fedora host is missing a security update. File : fedora_2011-5744.nasl - Type : ACT_GATHER_INFO |
| 2011-04-28 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_kernel-110414.nasl - Type : ACT_GATHER_INFO |
| 2011-04-28 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_kernel-110415.nasl - Type : ACT_GATHER_INFO |
| 2011-04-27 | Name : The remote Fedora host is missing a security update. File : fedora_2011-5777.nasl - Type : ACT_GATHER_INFO |
| 2011-04-08 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0421.nasl - Type : ACT_GATHER_INFO |
| 2011-03-25 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kernel-7381.nasl - Type : ACT_GATHER_INFO |
| 2011-03-17 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_expat-100109.nasl - Type : ACT_GATHER_INFO |
| 2011-03-16 | Name : The remote Fedora host is missing a security update. File : fedora_2011-2794.nasl - Type : ACT_GATHER_INFO |
| 2011-03-16 | Name : The remote Fedora host is missing a security update. File : fedora_2011-2801.nasl - Type : ACT_GATHER_INFO |
| 2011-03-16 | Name : The remote Fedora host is missing a security update. File : fedora_2011-3097.nasl - Type : ACT_GATHER_INFO |
| 2011-03-09 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_kernel-110228.nasl - Type : ACT_GATHER_INFO |
| 2011-03-08 | Name : The remote Fedora host is missing a security update. File : fedora_2011-2134.nasl - Type : ACT_GATHER_INFO |
| 2011-03-08 | Name : The remote VMware ESXi / ESX host is missing one or more security-related pat... File : vmware_VMSA-2011-0004.nasl - Type : ACT_GATHER_INFO |
| 2011-03-03 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1080-2.nasl - Type : ACT_GATHER_INFO |
| 2011-03-02 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1080-1.nasl - Type : ACT_GATHER_INFO |
| 2011-03-02 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1081-1.nasl - Type : ACT_GATHER_INFO |
| 2011-02-11 | Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2011-041-02.nasl - Type : ACT_GATHER_INFO |
| 2011-02-11 | Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2011-041-03.nasl - Type : ACT_GATHER_INFO |
| 2011-02-11 | Name : The remote Fedora host is missing a security update. File : fedora_2011-1138.nasl - Type : ACT_GATHER_INFO |
| 2011-01-31 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2153.nasl - Type : ACT_GATHER_INFO |
| 2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_libicecore-6857.nasl - Type : ACT_GATHER_INFO |
| 2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_libicecore-6862.nasl - Type : ACT_GATHER_INFO |
| 2011-01-21 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_libpython2_6-1_0-101109.nasl - Type : ACT_GATHER_INFO |
| 2011-01-21 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_popt-101209.nasl - Type : ACT_GATHER_INFO |
| 2011-01-21 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_python-7314.nasl - Type : ACT_GATHER_INFO |
| 2011-01-14 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0027.nasl - Type : ACT_GATHER_INFO |
| 2010-12-12 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_libpython2_6-1_0-101028.nasl - Type : ACT_GATHER_INFO |
| 2010-12-02 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_cifs-mount-100613.nasl - Type : ACT_GATHER_INFO |
| 2010-12-02 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_libpython2_6-1_0-100323.nasl - Type : ACT_GATHER_INFO |
| 2010-12-02 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_popt-100706.nasl - Type : ACT_GATHER_INFO |
| 2010-11-28 | Name : The remote Fedora host is missing a security update. File : fedora_2010-17807.nasl - Type : ACT_GATHER_INFO |
| 2010-11-28 | Name : The remote Fedora host is missing a security update. File : fedora_2010-17819.nasl - Type : ACT_GATHER_INFO |
| 2010-11-24 | Name : The remote Fedora host is missing a security update. File : fedora_2010-17720.nasl - Type : ACT_GATHER_INFO |
| 2010-11-22 | Name : The remote Fedora host is missing a security update. File : fedora_2010-17732.nasl - Type : ACT_GATHER_INFO |
| 2010-11-22 | Name : The remote Fedora host is missing a security update. File : fedora_2010-17762.nasl - Type : ACT_GATHER_INFO |
| 2010-11-01 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-215.nasl - Type : ACT_GATHER_INFO |
| 2010-11-01 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-216.nasl - Type : ACT_GATHER_INFO |
| 2010-10-20 | Name : The remote web server is affected by multiple vulnerabilities. File : apache_2_0_64.nasl - Type : ACT_GATHER_INFO |
| 2010-10-20 | Name : The remote web server may be affected by several issues. File : apache_2_2_17.nasl - Type : ACT_GATHER_INFO |
| 2010-10-11 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_cifs-mount-6921.nasl - Type : ACT_GATHER_INFO |
| 2010-10-11 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_cifs-mount-7072.nasl - Type : ACT_GATHER_INFO |
| 2010-10-11 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_expat-6619.nasl - Type : ACT_GATHER_INFO |
| 2010-10-11 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_expat-6703.nasl - Type : ACT_GATHER_INFO |
| 2010-10-11 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_expat-6765.nasl - Type : ACT_GATHER_INFO |
| 2010-10-11 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_popt-7069.nasl - Type : ACT_GATHER_INFO |
| 2010-10-11 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_python-6946.nasl - Type : ACT_GATHER_INFO |
| 2010-10-11 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_pyxml-6715.nasl - Type : ACT_GATHER_INFO |
| 2010-10-06 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_dd943fbbd0fe11df95a800219b0fc4d8.nasl - Type : ACT_GATHER_INFO |
| 2010-09-17 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_popt-100609.nasl - Type : ACT_GATHER_INFO |
| 2010-09-17 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_rpm-100609.nasl - Type : ACT_GATHER_INFO |
| 2010-09-16 | Name : The remote Fedora host is missing a security update. File : fedora_2010-14678.nasl - Type : ACT_GATHER_INFO |
| 2010-09-13 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2010-0679.nasl - Type : ACT_GATHER_INFO |
| 2010-09-13 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-180.nasl - Type : ACT_GATHER_INFO |
| 2010-09-12 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2010-0678.nasl - Type : ACT_GATHER_INFO |
| 2010-09-08 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0678.nasl - Type : ACT_GATHER_INFO |
| 2010-09-08 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0679.nasl - Type : ACT_GATHER_INFO |
| 2010-09-04 | Name : The remote Fedora host is missing a security update. File : fedora_2010-13388.nasl - Type : ACT_GATHER_INFO |
| 2010-07-30 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-132.nasl - Type : ACT_GATHER_INFO |
| 2010-07-26 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_popt-100609.nasl - Type : ACT_GATHER_INFO |
| 2010-07-08 | Name : The remote Fedora host is missing a security update. File : fedora_2010-9829.nasl - Type : ACT_GATHER_INFO |
| 2010-07-07 | Name : The remote Fedora host is missing a security update. File : fedora_2010-10617.nasl - Type : ACT_GATHER_INFO |
| 2010-07-06 | Name : The remote Fedora host is missing a security update. File : fedora_2010-9565.nasl - Type : ACT_GATHER_INFO |
| 2010-07-01 | Name : The remote Fedora host is missing a security update. File : fedora_2010-1190.nasl - Type : ACT_GATHER_INFO |
| 2010-07-01 | Name : The remote Fedora host is missing a security update. File : fedora_2010-1218.nasl - Type : ACT_GATHER_INFO |
| 2010-07-01 | Name : The remote Fedora host is missing a security update. File : fedora_2010-3999.nasl - Type : ACT_GATHER_INFO |
| 2010-07-01 | Name : The remote Fedora host is missing a security update. File : fedora_2010-4050.nasl - Type : ACT_GATHER_INFO |
| 2010-07-01 | Name : The remote Fedora host is missing a security update. File : fedora_2010-9652.nasl - Type : ACT_GATHER_INFO |
| 2010-07-01 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_cifs-mount-100613.nasl - Type : ACT_GATHER_INFO |
| 2010-07-01 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_cifs-mount-100613.nasl - Type : ACT_GATHER_INFO |
| 2010-06-22 | Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12591.nasl - Type : ACT_GATHER_INFO |
| 2010-05-15 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_libpython2_6-1_0-100328.nasl - Type : ACT_GATHER_INFO |
| 2010-05-15 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_libpython2_6-1_0-100330.nasl - Type : ACT_GATHER_INFO |
| 2010-05-15 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_libpython2_6-1_0-100329.nasl - Type : ACT_GATHER_INFO |
| 2010-05-14 | Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12600.nasl - Type : ACT_GATHER_INFO |
| 2010-05-05 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-090.nasl - Type : ACT_GATHER_INFO |
| 2010-04-16 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-890-6.nasl - Type : ACT_GATHER_INFO |
| 2010-04-09 | Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12595.nasl - Type : ACT_GATHER_INFO |
| 2010-04-09 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_cifs-mount-6920.nasl - Type : ACT_GATHER_INFO |
| 2010-03-25 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_cifs-mount-100312.nasl - Type : ACT_GATHER_INFO |
| 2010-03-25 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_cifs-mount-100312.nasl - Type : ACT_GATHER_INFO |
| 2010-03-25 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_cifs-mount-100315.nasl - Type : ACT_GATHER_INFO |
| 2010-03-23 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_cifs-mount-100312.nasl - Type : ACT_GATHER_INFO |
| 2010-03-05 | Name : The remote VMware ESX host is missing one or more security-related patches. File : vmware_VMSA-2010-0004.nasl - Type : ACT_GATHER_INFO |
| 2010-03-02 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2004.nasl - Type : ACT_GATHER_INFO |
| 2010-02-24 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-1953.nasl - Type : ACT_GATHER_INFO |
| 2010-02-24 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-1977.nasl - Type : ACT_GATHER_INFO |
| 2010-02-23 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_libexpat0-100220.nasl - Type : ACT_GATHER_INFO |
| 2010-02-23 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_libexpat0-100220.nasl - Type : ACT_GATHER_INFO |
| 2010-02-23 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_libexpat0-100220.nasl - Type : ACT_GATHER_INFO |
| 2010-02-19 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-890-5.nasl - Type : ACT_GATHER_INFO |
| 2010-01-29 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-893-1.nasl - Type : ACT_GATHER_INFO |
| 2010-01-27 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-890-4.nasl - Type : ACT_GATHER_INFO |
| 2010-01-25 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-890-3.nasl - Type : ACT_GATHER_INFO |
| 2010-01-22 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-890-2.nasl - Type : ACT_GATHER_INFO |
| 2010-01-21 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-890-1.nasl - Type : ACT_GATHER_INFO |
| 2010-01-15 | Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12568.nasl - Type : ACT_GATHER_INFO |
| 2010-01-15 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_expat-100111.nasl - Type : ACT_GATHER_INFO |
| 2010-01-15 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_expat-100111.nasl - Type : ACT_GATHER_INFO |
| 2010-01-15 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_expat-100111.nasl - Type : ACT_GATHER_INFO |
| 2010-01-15 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_expat-100108.nasl - Type : ACT_GATHER_INFO |
| 2010-01-15 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_expat-6764.nasl - Type : ACT_GATHER_INFO |
| 2010-01-05 | Name : The remote CentOS host is missing a security update. File : centos_RHSA-2010-0002.nasl - Type : ACT_GATHER_INFO |
| 2010-01-05 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0002.nasl - Type : ACT_GATHER_INFO |
| 2009-12-27 | Name : The remote Fedora host is missing a security update. File : fedora_2009-12753.nasl - Type : ACT_GATHER_INFO |
| 2009-12-18 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_pyxml-091210.nasl - Type : ACT_GATHER_INFO |
| 2009-12-18 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_pyxml-091210.nasl - Type : ACT_GATHER_INFO |
| 2009-12-18 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_pyxml-091210.nasl - Type : ACT_GATHER_INFO |
| 2009-12-18 | Name : The remote SuSE 11 host is missing a security update. File : suse_11_pyxml-091211.nasl - Type : ACT_GATHER_INFO |
| 2009-12-18 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_pyxml-6714.nasl - Type : ACT_GATHER_INFO |
| 2009-12-14 | Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12558.nasl - Type : ACT_GATHER_INFO |
| 2009-12-14 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_expat-091207.nasl - Type : ACT_GATHER_INFO |
| 2009-12-14 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_expat-091207.nasl - Type : ACT_GATHER_INFO |
| 2009-12-14 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_expat-091207.nasl - Type : ACT_GATHER_INFO |
| 2009-12-14 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_expat-091207.nasl - Type : ACT_GATHER_INFO |
| 2009-12-14 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_expat-6702.nasl - Type : ACT_GATHER_INFO |
| 2009-12-08 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1625.nasl - Type : ACT_GATHER_INFO |
| 2009-12-08 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_5f030587e39a11de881e001aa0166822.nasl - Type : ACT_GATHER_INFO |
| 2009-12-08 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_e9fca207e39911de881e001aa0166822.nasl - Type : ACT_GATHER_INFO |
| 2009-12-08 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1625.nasl - Type : ACT_GATHER_INFO |
| 2009-12-07 | Name : The remote Fedora host is missing a security update. File : fedora_2009-12690.nasl - Type : ACT_GATHER_INFO |
| 2009-12-07 | Name : The remote Fedora host is missing a security update. File : fedora_2009-12716.nasl - Type : ACT_GATHER_INFO |
| 2009-12-07 | Name : The remote Fedora host is missing a security update. File : fedora_2009-12737.nasl - Type : ACT_GATHER_INFO |
| 2009-12-07 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-316.nasl - Type : ACT_GATHER_INFO |
| 2009-11-23 | Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12529.nasl - Type : ACT_GATHER_INFO |
| 2009-11-23 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_expat-091030.nasl - Type : ACT_GATHER_INFO |
| 2009-11-23 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_expat-6618.nasl - Type : ACT_GATHER_INFO |
| 2009-11-11 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2009-1572.nasl - Type : ACT_GATHER_INFO |
| 2009-11-05 | Name : The remote Fedora host is missing a security update. File : fedora_2009-10949.nasl - Type : ACT_GATHER_INFO |
| 2009-11-05 | Name : The remote Fedora host is missing a security update. File : fedora_2009-10956.nasl - Type : ACT_GATHER_INFO |
| 2009-11-05 | Name : The remote Fedora host is missing a security update. File : fedora_2009-10972.nasl - Type : ACT_GATHER_INFO |
| 2009-11-05 | Name : The remote Fedora host is missing a security update. File : fedora_2009-10987.nasl - Type : ACT_GATHER_INFO |
| 2009-11-05 | Name : The remote Fedora host is missing a security update. File : fedora_2009-11029.nasl - Type : ACT_GATHER_INFO |
| 2009-11-05 | Name : The remote Fedora host is missing a security update. File : fedora_2009-11030.nasl - Type : ACT_GATHER_INFO |
| 2009-11-05 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_expat-091030.nasl - Type : ACT_GATHER_INFO |
| 2009-11-05 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_expat-091030.nasl - Type : ACT_GATHER_INFO |
| 2009-11-05 | Name : The remote openSUSE host is missing a security update. File : suse_expat-6613.nasl - Type : ACT_GATHER_INFO |
| 2009-08-25 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-218.nasl - Type : ACT_GATHER_INFO |
| 2009-08-25 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-219.nasl - Type : ACT_GATHER_INFO |
| 2009-08-25 | Name : The remote Mandriva Linux host is missing a security update. File : mandriva_MDVSA-2009-220.nasl - Type : ACT_GATHER_INFO |
| 2009-08-24 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-211.nasl - Type : ACT_GATHER_INFO |
| 2009-08-24 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-212.nasl - Type : ACT_GATHER_INFO |
| 2009-08-24 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-213.nasl - Type : ACT_GATHER_INFO |
| 2009-08-24 | Name : The remote Mandriva Linux host is missing a security update. File : mandriva_MDVSA-2009-214.nasl - Type : ACT_GATHER_INFO |
| 2009-08-24 | Name : The remote Mandriva Linux host is missing a security update. File : mandriva_MDVSA-2009-215.nasl - Type : ACT_GATHER_INFO |
| 2009-08-24 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-217.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2016-03-04 13:26:25 |
|
| 2014-02-17 12:07:21 |
|
| 2014-01-08 00:22:43 |
|
| 2013-12-27 13:21:52 |
|
| 2013-11-11 12:41:40 |
|
| 2013-10-01 21:23:33 |
|
| 2013-06-08 17:23:03 |
|
| 2013-05-11 00:56:46 |
|
| 2013-03-01 17:20:46 |
|
