MCAFEE FOUNDSTONE FSL UPDATE

(1)

2014-JUL-16

MCAFEE FOUNDSTONE FSL UPDATE

To better protect your environment McAfee has created this FSL check update for the Foundstone Product Suite. The following is a detailed summary of the new and updated checks included with this release.

NEW CHECKS

16812 - 3S Software CoDeSys Gateway Server Denial of Service

Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS) Risk Level: High

Description

A vulnerability in some versions of 3S Software CoDeSys Gateway Server could lead to a denial of service. Observation

A vulnerability in some versions of 3S Software CoDeSys Gateway Server could lead to a denial of service.

The flaw is due to an unspecified defect. Successful exploitation by a remote attacker could result in a denial of service condition.

16820 - IBM AIX Multiple Java Vulnerabilities (April 2014)

Category: SSH Module -> NonIntrusive -> AIX Patches and Hotfixes Risk Level: High

CVE: CVE-2013-6629, CVE-2013-6954, CVE-2014-0429, CVE-2014-0446, CVE-2014-0448, CVE-2014-0449, CVE-2014-0451, 2014-0452, 2014-0453, 2014-0454, 2014-0455, 2014-0457, 2014-0458, 2014-0459, 0460, 0461, 0878, 1876, 2398, 2401, 2402, CVE-2014-2409, CVE-2014-2412, CVE-2014-2414, CVE-2014-2420, CVE-2014-2421, CVE-2014-2423, CVE-2014-2427, CVE-2014-2428 Description

Multiple vulnerabilities are present in some versions of IBM Java. Observation

IBM Java is used to run java application.

Multiple vulnerabilities are present in some versions of IBM Java. The flaws lie in multiple components. Successful exploitation could allow an attacker to disclose sensitive information, manipulate certain data, cause a denial of service or compromise a vulnerable system.

16825 - (SOL15319) F5 BIG-IP Linux kernel TTY Vulnerability

Category: SSH Module -> NonIntrusive -> F5 Risk Level: High

CVE: CVE-2014-0196 Description

(2)

Observation

F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System.

A denial of service vulnerability is present in some versions of F5 BIG-IP systems. The flaw lies in drivers/tty/n_tty.c in the Linux kernel. Successful exploitation by a remote attacker could cause a denial of service condition or a privilege escalation.

16827 - Cisco IOS OpenSSL Multiple Vulnerabilities (CSCup22590)

Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and Hotfixes Risk Level: High

CVE: CVE-2014-0195, CVE-2014-0221, CVE-2014-0224 Description

Multiple vulnerabilities are present in some versions of Cisco IOS. Observation

Cisco IOS is an operating system used in Cisco devices.

Multiple vulnerabilities are present in some versions of Cisco IOS. The flaw lies in OpenSSL. Successful exploitation could allow an attacker to cause denial of service, obtain sensitive information and execute arbitrary code.

16829 - (VMSA-2014-0007) VMware vCenter Operations Manager (vCOps) Two Vulnerabilities

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)

Risk Level: High

CVE: CVE-2014-0050, CVE-2014-0112 DISA IAVA: 2014-B-0090

Description

Multiple vulnerabilities are present in some versions of VMware vCenter Operations Manager. Observation

VMware vCenter Operations Manager is a scalable and extensible platform to manage VMware vSphere.

Multiple vulnerabilities are present in some versions of VMware vCenter Operations Manager. The flaws lie in the Apache Tomcat component. Successful exploitation could allow an attacker to execute remote code or cause a denial of service condition.

16830 - (SOL15317) F5 BIG-IP Linux Kernel Denial of Service

A denial of service vulnerability is present in some versions of F5 BIG-IP systems. Observation

A denial of service vulnerability is present in some versions of F5 BIG-IP systems. The flaw lies in net/sctp/sm_statefuns.c in the Linux kernel. Successful exploitation by a remote attacker could cause a denial of service condition.

(3)

16832 - 3S Software CoDeSys Webserver Stack Buffer Overflow Remote Code Execution

Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS) Risk Level: High

Description

A vulnerability in some versions of 3S Software CoDeSys Webserver could lead to remote code execution. Observation

A vulnerability in some versions of 3S Software CoDeSys Webserver could lead to remote code execution.

The flaw is due to an unspecified defect. Successful exploitation by a remote attacker could result in the execution of arbitrary code or a denial of service.

16835 - (SOL15304) F5 BIG-IP Linux Kernel tcp_rcv_state_process Vulnerability

A denial of service vulnerability is present in some versions of F5 BIG-IP products. Observation

A denial of service vulnerability is present in some versions of F5 BIG-IP products. The flaw lies in tcp_rcv_state_process function of kernel. Successful exploitation could allow an attacker to cause denial of service.

16837 - (SOL15301) F5 BIG-IP Linux Kernel TCP ISN Vulnerability

A denial of service vulnerability is present in some versions of F5 BIG-IP products. Observation

A denial of service vulnerability is present in some versions of F5 BIG-IP products. The flaw lies in Linux kernel. Successful exploitation could allow an attacker to cause denial of service or hijack network sessions.

16903 - Oracle Java SE Critical Patch Update July 2014

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)

Risk Level: High

(4)

2014-4220, 2014-4221, 2014-4223, 2014-4227, 2014-4244, 2014-4247, 2014-4252, CVE-2014-4262, CVE-2014-4263, CVE-2014-4264, CVE-2014-4265, CVE-2014-4266, CVE-2014-4268

Description

Multiple vulnerabilities are present in some versions of Oracle Java SE. Observation

Oracle Java SE is used to run Java applications.

Multiple vulnerabilities are present in some versions of Oracle Java SE. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary code.

88621 - Slackware Linux 14.0, 14.1 SSA:2014-192-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and Hotfixes Risk Level: High

CVE: CVE-2014-0207, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487, CVE-2014-3515, CVE-2014-3981, CVE-2014-4049

Description

The scan detected that the host is missing the following update: SSA:2014-192-01 Observation

Updates often remediate critical security problems that should be quickly addressed. For more information see:

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2014&m=slackware-security.413705 Slackware 14.1 x86_64 php-5.4.30-x86_64-1 Slackware 14.0 x86_64 php-5.4.30-x86_64-1

93347 - Mandriva Linux MBS1 MDVSA-2014-132 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Mandriva Patches and Hotfixes Risk Level: High

The scan detected that the host is missing the following update: MDVSA-2014-132 Observation

https://www.mandriva.com/en/support/security/advisories/mbs1/MDVSA-2014:132/ Mandriva Linux mbs1

x86_64

(5)

lib64xfont1-static-devel-1.4.5-2.2

CVE: CVE-2014-0207, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487, CVE-2014-3515, CVE-2014-4049, CVE-2014-4721

Description

https://www.mandriva.com/en/support/security/advisories/mbs1/MDVSA-2014:130/ Mandriva Linux mbs1 x86_64 php-cli-5.5.14-1 php-sybase_ct-5.5.14-1 php-dba-5.5.14-1 php-mcrypt-5.5.14-1 php-json-5.5.14-1 php-imap-5.5.14-1 php-wddx-5.5.14-1 php-mysqlnd-5.5.14-1 php-sysvsem-5.5.14-1 php-sockets-5.5.14-1 php-phar-5.5.14-1 php-sqlite3-5.5.14-1 php-sysvshm-5.5.14-1 php-xmlreader-5.5.14-1 php-mysql-5.5.14-1 php-gd-5.5.14-1 php-xmlwriter-5.5.14-1 php-session-5.5.14-1 php-opcache-5.5.14-1 php-tokenizer-5.5.14-1 php-ftp-5.5.14-1 php-xsl-5.5.14-1 php-zip-5.5.14-1 php-xml-5.5.14-1 php-ldap-5.5.14-1 php-recode-5.5.14-1 php-hash-5.5.14-1 php-iconv-5.5.14-1 php-odbc-5.5.14-1 php-pgsql-5.5.14-1 php-fileinfo-5.5.14-1 php-filter-5.5.14-1 php-timezonedb-2014.5-1 php-xmlrpc-5.5.14-1 php-apc-3.1.15-1.8 php-apc-admin-3.1.15-1.8 php-mbstring-5.5.14-1 php-exif-5.5.14-1

(6)

php-enchant-5.5.14-1 php-tidy-5.5.14-1 php-shmop-5.5.14-1 php-mysqli-5.5.14-1 php-gmp-5.5.14-1 php-pdo-5.5.14-1 php-readline-5.5.14-1 php-bcmath-5.5.14-1 php-bz2-5.5.14-1 php-zlib-5.5.14-1 lib64php5_common5-5.5.14-1 php-sysvmsg-5.5.14-1 php-gettext-5.5.14-1 php-pdo_mysql-5.5.14-1 php-intl-5.5.14-1 php-cgi-5.5.14-1 php-soap-5.5.14-1 php-curl-5.5.14-1 php-posix-5.5.14-1 php-pdo_sqlite-5.5.14-1 php-ini-5.5.14-1 php-pcntl-5.5.14-1 php-dom-5.5.14-1 php-calendar-5.5.14-1 php-pdo_dblib-5.5.14-1 php-devel-5.5.14-1 php-fpm-5.5.14-1 php-doc-5.5.14-1 php-openssl-5.5.14-1 php-pdo_odbc-5.5.14-1 php-mssql-5.5.14-1 php-snmp-5.5.14-1 php-pdo_pgsql-5.5.14-1 php-ctype-5.5.14-1

CVE: CVE-2012-2795, CVE-2012-5150, CVE-2014-2098, CVE-2014-2099, CVE-2014-2263, CVE-2014-4609, CVE-2014-4610 Description

https://www.mandriva.com/en/support/security/advisories/mbs1/MDVSA-2014:129/ Mandriva Linux mbs1 x86_64 lib64avcodec53-0.10.14-1 lib64postproc52-0.10.14-1 lib64avutil51-0.10.14-1 lib64ffmpeg-devel-0.10.14-1 lib64avformat53-0.10.14-1 lib64swscaler2-0.10.14-1

(7)

lib64ffmpeg-static-devel-0.10.14-1 lib64avfilter2-0.10.14-1

lib64swresample0-0.10.14-1

140480 - Red Hat Enterprise Linux RHSA-2014-0860 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High

The scan detected that the host is missing the following update: RHSA-2014-0860 Observation

https://rhn.redhat.com/errata/RHSA-2014-0860.html RHEL5D x86_64 flash-plugin-11.2.202.394-1.el5 i386 flash-plugin-11.2.202.394-1.el5 RHEL5S x86_64 flash-plugin-11.2.202.394-1.el5 i386 flash-plugin-11.2.202.394-1.el5 RHEL6D x86_64 flash-plugin-11.2.202.394-1.el6 i386 flash-plugin-11.2.202.394-1.el6 RHEL6S x86_64 flash-plugin-11.2.202.394-1.el6 i386 flash-plugin-11.2.202.394-1.el6 RHEL6WS x86_64 flash-plugin-11.2.202.394-1.el6 i386 flash-plugin-11.2.202.394-1.el6

(8)

Risk Level: High CVE: CVE-2014-3483 Description

https://rhn.redhat.com/errata/RHSA-2014-0877.html RHEL6S noarch ror40-rubygem-activerecord-4.0.2-2.2.el6 ror40-rubygem-activerecord-doc-4.0.2-2.2.el6 RHEL6WS noarch ror40-rubygem-activerecord-4.0.2-2.2.el6 ror40-rubygem-activerecord-doc-4.0.2-2.2.el6

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High

https://rhn.redhat.com/errata/RHSA-2014-0876.html RHEL6S noarch ruby193-rubygem-activerecord-3.2.8-8.2.el6 ruby193-rubygem-activerecord-doc-3.2.8-8.2.el6 RHEL6WS noarch ruby193-rubygem-activerecord-3.2.8-8.2.el6 ruby193-rubygem-activerecord-doc-3.2.8-8.2.el6

177951 - Gentoo Linux GLSA-201407-02 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixes Risk Level: High

(9)

The scan detected that the host is missing the following update: GLSA-201407-02 Observation

http://security.gentoo.org/glsa/glsa-201407-02.xml Affected packages:

www-plugins/adobe-flash < 11.2.202.394

184476 - Ubuntu Linux 10.04, 12.04, 13.10, 14.04 USN-2276-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: High

CVE: CVE-2014-0207, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487, CVE-2014-3515, CVE-2014-4670, CVE-2014-4698, CVE-2014-4721

Description

The scan detected that the host is missing the following update: USN-2276-1 Observation

https://lists.ubuntu.com/archives/ubuntu-security-announce/2014-July/002581.html Ubuntu 14.04 libapache2-mod-php5_5.5.9+dfsg-1ubuntu4.3 php5-cli_5.5.9+dfsg-1ubuntu4.3 php5-fpm_5.5.9+dfsg-1ubuntu4.3 php5-cgi_5.5.9+dfsg-1ubuntu4.3 Ubuntu 12.04 php5-cli_5.3.10-1ubuntu3.13 php5-cgi_5.3.10-1ubuntu3.13 php5-fpm_5.3.10-1ubuntu3.13 libapache2-mod-php5_5.3.10-1ubuntu3.13 Ubuntu 13.10 libapache2-mod-php5_5.5.3+dfsg-1ubuntu2.6 php5-cli_5.5.3+dfsg-1ubuntu2.6 php5-fpm_5.5.3+dfsg-1ubuntu2.6 php5-cgi_5.5.3+dfsg-1ubuntu2.6 Ubuntu 10.04 php5-cli_5.3.2-1ubuntu4.26 php5-cgi_5.3.2-1ubuntu4.26 libapache2-mod-php5_5.3.2-1ubuntu4.26

188068 - Fedora Linux 19 FEDORA-2014-8034 Update Is Not Installed

(10)

Risk Level: High CVE: CVE-2014-3499 Description

The scan detected that the host is missing the following update: FEDORA-2014-8034 Observation

http://lists.fedoraproject.org/pipermail/package-announce/2014-July/135366.html Fedora Core 19

docker-io-1.0.0-6.fc19

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High

libXfont-1.4.8-1.fc20

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High

(11)

16811 - (VMSA-2014-0006) VMware Update Manager Multiple Vulnerabilities Category: Windows Host Assessment -> Miscellaneous

(CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium

CVE: CVE-2010-5298, CVE-2014-0198, CVE-2014-0224, CVE-2014-3470 DISA IAVA: 2014-B-0091

Description

Multiple vulnerabilities are present in some versions of VMware vSphere Update Manager. Observation

VMware vSphere Update Manager automates patch management process of manage VMware vSphere hosts.

Multiple vulnerabilities are present in some versions of VMware vSphere Update Manager. The flaws lie in the OpenSSL

component. Successful exploitation could allow an attacker to access to private information or cause a denial of service condition. 16821 - (HPSBMU03051) HP System Management Homepage OpenSSL Multiple Vulnerabilities

Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Risk Level: Medium

CVE: CVE-2010-5298, CVE-2014-0076, CVE-2014-0195, CVE-2014-0198, CVE-2014-0221, CVE-2014-0224, CVE-2014-3470 DISA IAVA: 2014-B-0085

Description

Multiple vulnerabilities are present in some versions of HP System Management Homepage. Observation

HP System Management Homepage is a web-based interface that consolidates and simplifies the management of individual ProLiant and Integrity servers.

Multiple vulnerabilities are present in some versions of HP System Management Homepage. The flaws lie in OpenSSL library. Successful exploitation could allow an attacker to disclose information, execute remote code or cause a denial of service condition. 16822 - (SOL15329) F5 BIG-IP SSL_MODE_RELEASE_BUFFERS Denial Of Service Vulnerability

Category: SSH Module -> NonIntrusive -> F5 Risk Level: Medium

A denial of service vulnerability is present in some versions of F5 BIG-IP systems. The flaw lies within the embedded OpenSSL. Successful exploitation could allow an attacker to cause a denial of service condition.

(12)

Vulnerabilities

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium

CVE: CVE-2014-0224, CVE-2014-3470 Description

Multiple vulnerabilities are present in some versions of Cisco NX-OS. Observation

Multiple vulnerabilities are present in some versions of Cisco NX-OS.

The flaw lies in OpenSSL. Successful exploitation could allow an attacker to disclose certain sensitive information and denial of service condition.

16878 - D-Link DWC-1000 "thispage" Directory Traversal Vulnerability Category: Wireless Assessment -> NonIntrusive -> Wireless

Risk Level: Medium CVE: CVE-2014-3226 Description

A directory traversal vulnerability is present in some versions of D-Link DWC-1000 firmware. Observation

D-Link DWC-1000 is a wireless router.

A directory traversal vulnerability is present in some versions of D-Link DWC-1000 firmware. The flaw lies in platform.cgi. Successful exploitation could allow an attacker to obtain sensitive information.

16882 - (HPSBMU03055) HP Smart Update Manager Multiple Vulnerabilities Category: General Vulnerability Assessment -> NonIntrusive -> Web Server

Risk Level: Medium

CVE: CVE-2010-5298, CVE-2014-0195, CVE-2014-0198, CVE-2014-0221, CVE-2014-0224, CVE-2014-3470 Description

Multiple vulnerabilities are present in some versions of HP Smart Update Manager. Observation

HP Smart Update Manager is a installing and updating manager for HP products.

Multiple vulnerabilities are present in some versions of HP Smart Update Manager. The flaws lie in the OpenSSL function.

Successful exploitation could allow an attacker to unauthorized access, disclose information, execute remote code or cause denial of service.

16885 - (SOL15278) F5 BIG-IP SSL Renegotiation Denial Of Service Vulnerability Category: SSH Module -> NonIntrusive -> F5

Risk Level: Medium CVE: CVE-2011-1473

(13)

Description

A denial of service vulnerability is present in some versions of F5 BIG-IP systems. The flaw occurs when client-initiated

renegotiation is not properly restricted within the SSL and TLS protocols. Successful exploitation could allow an attacker to cause a denial of service condition.

58887 - Debian Linux 7.0 DSA-2975-1 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Medium

CVE: CVE-2013-4995, CVE-2013-4996, CVE-2013-5002, CVE-2013-5003, CVE-2014-1879 Description

The scan detected that the host is missing the following update: DSA-2975-1 Observation

http://www.debian.org/security/2014/dsa-2975 Debian 7.0

all

phpmyadmin_4:3.4.11.1-2+deb7u1

85741 - CentOS 6 CESA-2014-0865 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: Medium

The scan detected that the host is missing the following update: CESA-2014-0865 Observation

http://lists.centos.org/pipermail/centos-announce/2014-July/020403.html CentOS 6 noarch tomcat6-webapps-6.0.24-72.el6_5 tomcat6-docs-webapp-6.0.24-72.el6_5 tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-javadoc-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5

(14)

tomcat6-admin-webapps-6.0.24-72.el6_5

85743 - CentOS 7 CESA-2014-0867 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: Medium

Description

http://lists.centos.org/pipermail/centos-announce/2014-July/020407.html CentOS 7 x86_64 samba-pidl-4.1.1-35.el7_0 samba-devel-4.1.1-35.el7_0 samba-vfs-glusterfs-4.1.1-35.el7_0 samba-winbind-modules-4.1.1-35.el7_0 samba-dc-4.1.1-35.el7_0 samba-common-4.1.1-35.el7_0 samba-python-4.1.1-35.el7_0 libsmbclient-devel-4.1.1-35.el7_0 libwbclient-devel-4.1.1-35.el7_0 samba-test-devel-4.1.1-35.el7_0 samba-4.1.1-35.el7_0 samba-winbind-4.1.1-35.el7_0 libsmbclient-4.1.1-35.el7_0 samba-dc-libs-4.1.1-35.el7_0 samba-test-4.1.1-35.el7_0 samba-winbind-krb5-locator-4.1.1-35.el7_0 libwbclient-4.1.1-35.el7_0 samba-winbind-clients-4.1.1-35.el7_0 samba-client-4.1.1-35.el7_0 samba-libs-4.1.1-35.el7_0 i686 libsmbclient-devel-4.1.1-35.el7_0 libwbclient-4.1.1-35.el7_0 samba-devel-4.1.1-35.el7_0 samba-libs-4.1.1-35.el7_0 samba-winbind-modules-4.1.1-35.el7_0 libwbclient-devel-4.1.1-35.el7_0 libsmbclient-4.1.1-35.el7_0

85744 - CentOS 6, 7 CESA-2014-0861 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: Medium

(15)

Observation

http://lists.centos.org/pipermail/centos-announce/2014-July/020401.html http://lists.centos.org/pipermail/centos-announce/2014-July/020406.html CentOS 7 x86_64 lzo-2.06-6.el7_0.2 lzo-devel-2.06-6.el7_0.2 lzo-minilzo-2.06-6.el7_0.2 i686 lzo-2.06-6.el7_0.2 lzo-devel-2.06-6.el7_0.2 lzo-minilzo-2.06-6.el7_0.2 CentOS 6 x86_64 lzo-2.03-3.1.el6_5.1 lzo-devel-2.03-3.1.el6_5.1 lzo-minilzo-2.03-3.1.el6_5.1 i686 lzo-2.03-3.1.el6_5.1 lzo-devel-2.03-3.1.el6_5.1 lzo-minilzo-2.03-3.1.el6_5.1

91528 - Oracle Enterprise Linux ELSA-2014-0861 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium

The scan detected that the host is missing the following update: ELSA-2014-0861 Observation

http://oss.oracle.com/pipermail/el-errata/2014-July/004219.html OEL6 x86_64 lzo-2.03-3.1.el6_5.1 lzo-devel-2.03-3.1.el6_5.1 lzo-minilzo-2.03-3.1.el6_5.1 i386 lzo-2.03-3.1.el6_5.1 lzo-devel-2.03-3.1.el6_5.1 lzo-minilzo-2.03-3.1.el6_5.1

(16)

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium

http://oss.oracle.com/pipermail/el-errata/2014-July/004220.html OEL6 x86_64 tomcat6-webapps-6.0.24-72.el6_5 tomcat6-docs-webapp-6.0.24-72.el6_5 tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-javadoc-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-admin-webapps-6.0.24-72.el6_5 i386 tomcat6-webapps-6.0.24-72.el6_5 tomcat6-docs-webapp-6.0.24-72.el6_5 tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-javadoc-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-admin-webapps-6.0.24-72.el6_5

93348 - Mandriva Linux MBS1 MDVSA-2014-131 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Mandriva Patches and Hotfixes

Risk Level: Medium

x86_64

lib64magic-devel-5.12-1.3 python-magic-5.12-1.3

(17)

lib64magic1-5.12-1.3

lib64magic-static-devel-5.12-1.3

x86_64

gnupg2-2.0.18-3.3

x86_64

iodine-server-0.6.0-0.rc1.3

Risk Level: Medium

(18)

https://www.mandriva.com/en/support/security/advisories/mbs1/MDVSA-2014:138/ Mandriva Linux mbs1 x86_64 asterisk-devel-11.11.0-1 asterisk-plugins-speex-11.11.0-1 asterisk-plugins-mobile-11.11.0-1 asterisk-plugins-cel-11.11.0-1 asterisk-plugins-minivm-11.11.0-1 asterisk-plugins-sqlite-11.11.0-1 asterisk-plugins-pktccops-11.11.0-1 asterisk-plugins-jabber-11.11.0-1 asterisk-plugins-voicemail-plain-11.11.0-1 asterisk-plugins-oss-11.11.0-1 asterisk-plugins-curl-11.11.0-1 asterisk-plugins-pgsql-11.11.0-1 lib64asteriskssl1-11.11.0-1 asterisk-plugins-snmp-11.11.0-1 asterisk-plugins-unistim-11.11.0-1 asterisk-firmware-11.11.0-1 asterisk-plugins-radius-11.11.0-1 asterisk-plugins-saycountpl-11.11.0-1 asterisk-plugins-festival-11.11.0-1 asterisk-plugins-alsa-11.11.0-1 asterisk-plugins-calendar-11.11.0-1 asterisk-plugins-jack-11.11.0-1 asterisk-plugins-skinny-11.11.0-1 asterisk-plugins-voicemail-imap-11.11.0-1 asterisk-plugins-mysql-11.11.0-1 asterisk-plugins-mp3-11.11.0-1 asterisk-plugins-ooh323-11.11.0-1 asterisk-plugins-fax-11.11.0-1 asterisk-plugins-voicemail-11.11.0-1 asterisk-plugins-ldap-11.11.0-1 asterisk-plugins-lua-11.11.0-1 asterisk-gui-11.11.0-1 asterisk-plugins-osp-11.11.0-1 asterisk-addons-11.11.0-1 asterisk-plugins-corosync-11.11.0-1 asterisk-plugins-ices-11.11.0-1 asterisk-plugins-dahdi-11.11.0-1 asterisk-plugins-tds-11.11.0-1 asterisk-plugins-portaudio-11.11.0-1

(19)

https://www.mandriva.com/en/support/security/advisories/mbs1/MDVSA-2014:133/ Mandriva Linux mbs1 x86_64 lib64gd-devel-2.0.35-19.1 lib64gd2-2.0.35-19.1 lib64gd-static-devel-2.0.35-19.1

135064 - Oracle Solaris 11.1.17.5.0 Update Is Not Installed (CVE-2014-4215) Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes

The scan detected that the host is missing the following update: SRU 11.1.17.5.0 Observation

https://support.oracle.com/epmos/faces/DocumentDisplay?id=1900373.1&_adf.ctrl-state=6alvr2j37_4&_afrLoop=344238817435057 135065 - Oracle Solaris 11.1.18.5.0 Update Is Not Installed (CVE-2014-4224)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium

https://support.oracle.com/epmos/faces/DocumentDisplay?id=1900373.1&_adf.ctrl-state=6alvr2j37_4&_afrLoop=344238817435057 135066 - Oracle Solaris 11.1.19.6.0 Update Is Not Installed (CVE-2014-4239)

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium

(20)

140484 - Red Hat Enterprise Linux RHSA-2014-0865 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: Medium

https://rhn.redhat.com/errata/RHSA-2014-0865.html RHEL6D noarch tomcat6-webapps-6.0.24-72.el6_5 tomcat6-docs-webapp-6.0.24-72.el6_5 tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-javadoc-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-admin-webapps-6.0.24-72.el6_5 RHEL6S noarch tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 RHEL6WS noarch tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5

140485 - Red Hat Enterprise Linux RHSA-2014-0861 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: Medium

(21)

For more information see: https://rhn.redhat.com/errata/RHSA-2014-0861.html RHEL6D x86_64 lzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1 i386 lzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1 RHEL6S x86_64 lzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1 i386 lzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1 RHEL6WS x86_64 lzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1 i386 lzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1

142304 - SuSE SLES 11, 11 SP3, SLED 11, 11 SP3 gpg2-9433 Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes

The scan detected that the host is missing the following update: gpg2-9433 Observation

http://download.novell.com/Download?buildid=1-fh-y2uJwk~ http://download.novell.com/Download?buildid=_AgOxhpHp5c~ http://download.novell.com/Download?buildid=2lyaT4zodGA~ http://download.novell.com/Download?buildid=0GgkmqJGu50~ http://download.novell.com/Download?buildid=x1WEEEPylbc~ http://download.novell.com/Download?buildid=8sPQu5CpHN8~ http://download.novell.com/Download?buildid=WXV39Z86I-U~ http://download.novell.com/Download?buildid=CHwuFggHPEM~ http://download.novell.com/Download?buildid=bFvWMSvGvq0~ SuSE SLED 11 SP3 x86_64 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1

(22)

i586 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1 SuSE SLES 11 SP3 x86_64 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1 i586 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1 SuSE SLED 11 x86_64 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1 i586 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1 SuSE SLES 11 x86_64 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1 i586 gpg2-2.0.9-25.33.39.1 gpg2-lang-2.0.9-25.33.39.1

142305 - SuSE SLES 10, 10 SP3 quagga-8893 Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes

Risk Level: Medium

The scan detected that the host is missing the following update: quagga-8893 Observation

http://download.novell.com/Download?buildid=nPwk-h5vkm4~ http://download.novell.com/Download?buildid=PvN03B2BJrE~ http://download.novell.com/Download?buildid=psfa_DlxYqM~ http://download.novell.com/Download?buildid=arnUiPwt8hs~ http://download.novell.com/Download?buildid=RONdgxhVckA~ http://download.novell.com/Download?buildid=luZHyvYI97w~ SuSE SLES 10 x86_64 quagga-devel-0.99.9-14.17.12 quagga-0.99.9-14.17.12 i586

(23)

quagga-devel-0.99.9-14.17.12 quagga-0.99.9-14.17.12 SuSE SLES 10 SP3 x86_64 quagga-debuginfo-0.99.9-14.17.12 i586 quagga-debuginfo-0.99.9-14.17.12

142306 - SuSE SLES 10, 10 SP4 quagga-8894 Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes

Risk Level: Medium

The scan detected that the host is missing the following update: quagga-8894 Observation

http://download.novell.com/Download?buildid=q6AW8em-DR0~ http://download.novell.com/Download?buildid=IqfR2UvFyeY~ http://download.novell.com/Download?buildid=68WXr_HM2O8~ http://download.novell.com/Download?buildid=NO8Z5EIdyXQ~ http://download.novell.com/Download?buildid=5eyLk1x3fNg~ http://download.novell.com/Download?buildid=8thwvIUx8Gg~ SuSE SLES 10 x86_64 quagga-devel-0.99.9-14.17.12 quagga-0.99.9-14.17.12 i586 quagga-devel-0.99.9-14.17.12 quagga-0.99.9-14.17.12 SuSE SLES 10 SP4 x86_64 quagga-debuginfo-0.99.9-14.17.12 i586 quagga-debuginfo-0.99.9-14.17.12

142307 - SuSE SLES 11, 11 SP3, SLED 11, 11 SP3 kde4-kdm-9467 Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes

Risk Level: Medium

The scan detected that the host is missing the following update: kde4-kdm-9467 Observation

(24)

http://download.novell.com/Download?buildid=J8Sb6qgieWU~ http://download.novell.com/Download?buildid=zOvy7rXfHHo~ http://download.novell.com/Download?buildid=7psciC9GVKs~ http://download.novell.com/Download?buildid=n7JeXKUTx7w~ http://download.novell.com/Download?buildid=JilSjCHayK4~ http://download.novell.com/Download?buildid=rOu5j9M3ddw~ http://download.novell.com/Download?buildid=36fbB187KzA~ http://download.novell.com/Download?buildid=ttsX2Yy3vx8~ http://download.novell.com/Download?buildid=hR3xp1RI9P4~ SuSE SLED 11 SP3 x86_64 kdm-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 noarch kdebase4-wallpapers-4.3.5-0.11.18.1 i586 kdm-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 SuSE SLES 11 SP3 x86_64 kdm-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 noarch kdebase4-wallpapers-4.3.5-0.11.18.1 i586 kdm-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 SuSE SLED 11 x86_64 kdm-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 noarch kdebase4-wallpapers-4.3.5-0.11.18.1

(25)

i586 kdm-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 SuSE SLES 11 x86_64 kdm-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1 noarch kdebase4-wallpapers-4.3.5-0.11.18.1 i586 kdm-4.3.5-0.12.18.1 kdebase4-workspace-4.3.5-0.12.18.1 kde4-kgreeter-plugins-4.3.5-0.12.18.1 kwin-4.3.5-0.12.18.1 kdebase4-workspace-ksysguardd-4.3.5-0.12.18.1

142308 - SuSE SLED 11 SP3 cabextract-9437 Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes

Risk Level: Medium

The scan detected that the host is missing the following update: cabextract-9437 Observation

http://download.novell.com/Download?buildid=njHHHghRcPg~ http://download.novell.com/Download?buildid=JiqlhguvA3M~ SuSE SLED 11 SP3 x86_64 cabextract-1.2-2.10.1 i586 cabextract-1.2-2.10.1

174518 - Scientific Linux Security ERRATA Moderate: lzo on SL6.x i386/srpm/x86_64 (1407-702) Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes

(26)

(1407-702) Observation

http://listserv.fnal.gov/scripts/wa.exe?A2=ind1407&L=scientific-linux-errata&T=0&P=702 SL6 x86_64 lzo-2.03-3.1.el6_5.1 lzo-devel-2.03-3.1.el6_5.1 lzo-minilzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1 i386 lzo-2.03-3.1.el6_5.1 lzo-devel-2.03-3.1.el6_5.1 lzo-minilzo-2.03-3.1.el6_5.1 lzo-debuginfo-2.03-3.1.el6_5.1 noarch lzo-debuginfo-2.03-3.1.el6_5.1

174519 - Scientific Linux Security ERRATA Moderate: tomcat6 on SL6.x i386/srpm/x86_64 (1407-424) Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes

Risk Level: Medium

The scan detected that the host is missing the following update: Security ERRATA Moderate: tomcat6 on SL6.x i386/srpm/x86_64 (1407-424)

Observation

http://listserv.fnal.gov/scripts/wa.exe?A2=ind1407&L=scientific-linux-errata&T=0&P=424 SL6 x86_64 tomcat6-webapps-6.0.24-72.el6_5 tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-docs-webapp-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-javadoc-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-admin-webapps-6.0.24-72.el6_5 i386 tomcat6-webapps-6.0.24-72.el6_5 tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-docs-webapp-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5

(27)

tomcat6-6.0.24-72.el6_5 tomcat6-javadoc-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-admin-webapps-6.0.24-72.el6_5 noarch tomcat6-webapps-6.0.24-72.el6_5 tomcat6-docs-webapp-6.0.24-72.el6_5 tomcat6-el-2.1-api-6.0.24-72.el6_5 tomcat6-servlet-2.5-api-6.0.24-72.el6_5 tomcat6-6.0.24-72.el6_5 tomcat6-javadoc-6.0.24-72.el6_5 tomcat6-lib-6.0.24-72.el6_5 tomcat6-jsp-2.1-api-6.0.24-72.el6_5 tomcat6-admin-webapps-6.0.24-72.el6_5

181224 - FreeBSD postfixadmin SQL Injection Vulnerability (ff98087f-0a8f-11e4-b00b-5453ed2e2b49) Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes

The scan detected that the host is missing the following update: postfixadmin -- SQL injection vulnerability (ff98087f-0a8f-11e4-b00b-5453ed2e2b49)

Observation

http://www.vuxml.org/freebsd/ff98087f-0a8f-11e4-b00b-5453ed2e2b49.html Affected packages:

postfixadmin < 2.3.7

184474 - Ubuntu Linux 10.04, 12.04, 13.10, 14.04 USN-2278-1 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes

Risk Level: Medium

CVE: CVE-2013-7345, CVE-2014-0207, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487, CVE-2014-3538 Description

https://lists.ubuntu.com/archives/ubuntu-security-announce/2014-July/002584.html Ubuntu 14.04

libmagic1_5.14-2ubuntu3.1 file_5.14-2ubuntu3.1

(28)

Ubuntu 12.04 file_5.09-2ubuntu0.4 libmagic1_5.09-2ubuntu0.4 Ubuntu 13.10 file_5.11-2ubuntu4.3 libmagic1_5.11-2ubuntu4.3 Ubuntu 10.04 libmagic1_5.03-5ubuntu1.3 file_5.03-5ubuntu1.3

188067 - Fedora Linux 19 FEDORA-2014-8107 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes

Risk Level: Medium

pnp4nagios-0.6.22-2.fc19

(29)

Risk Level: Medium

kernel-3.15.4-200.fc20

Risk Level: Medium

pnp4nagios-0.6.22-2.fc20

16888 - (SOL15348) F5 BIG-IP OpenSSL DTLS Denial of Service Vulnerability Category: SSH Module -> NonIntrusive -> F5

Risk Level: Low CVE: CVE-2009-1387 Description

A denial of service vulnerability is present in some versions of F5 BIG-IP systems. The flaw occurs when it receives an out-of-sequence DTLS handshake message. Successful exploitation could allow an attacker to cause a denial of service condition.

(30)

33270 - Oracle Solaris 151009-11 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low

Description

The scan detected that the host is missing the following update: 151009-11 Observation

https://getupdates.oracle.com/readme/151009-11

JavaSE 8: update 11 patch (equivalent to JDK 8u11), 64bit SOLARIS_10 SOLARIS_8 SOLARIS_9 SUNWj8man:1.8.0,REV=2014.03.18.08.02 SUNWj8rt:1.8.0,REV=2014.03.18.08.02 SUNWj8jmp:1.8.0,REV=2014.03.18.08.02 SUNWj8cfg:1.8.0,REV=2014.03.18.08.02 SUNWj8dmo:1.8.0,REV=2014.03.18.08.02 SUNWj8dev:1.8.0,REV=2014.03.18.08.02

33271 - Oracle Solaris 151010-11 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low

Description

The scan detected that the host is missing the following update: 151010-11 Observation

https://getupdates.oracle.com/readme/151010-11

JavaSE 8(x86): update 11 patch (equivalent to JDK 8u11), 64bit SOLARIS_10_x86 SOLARIS_8_x86 SOLARIS_9_x86 SUNWj8jmp:1.8.0,REV=2014.03.18.07.33 SUNWj8dev:1.8.0,REV=2014.03.18.07.33 SUNWj8dmo:1.8.0,REV=2014.03.18.07.33 SUNWj8rt:1.8.0,REV=2014.03.18.07.33 SUNWj8cfg:1.8.0,REV=2014.03.18.07.33 SUNWj8man:1.8.0,REV=2014.03.18.07.33

(31)

Category: Windows Host Assessment -> Top Weekly Malware (CATEGORY REQUIRES CREDENTIALS)

Risk Level: Low Description

The scan detected that the host is infected by the malware: Env - Trojan-urpxedtk (urpxedtk.exe) Observation

This malware shows the following behavior: The files and directories below were created: %temp%\\urpxedtk.exe

For more information on this malware, visit http://vil.nai.com/vil/default.aspx 58885 - Debian Linux 7.0 DSA-2977-1 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low

http://www.debian.org/security/2014/dsa-2977 Debian 7.0 all libavfilter-dev_6:0.8.13-1 libavformat53_6:0.8.13-1 libavdevice53_6:0.8.13-1 libavcodec53_6:0.8.13-1 ffmpeg-doc_6:0.8.13-1 libavutil51_6:0.8.13-1 libavcodec-extra-53_6:0.8.13-1 libswscale2_6:0.8.13-1 libav-dbg_6:0.8.13-1 libav-tools_6:0.8.13-1 libavdevice-extra-53_6:0.8.13-1 libavcodec-dev_6:0.8.13-1 libavfilter2_6:0.8.13-1 ffmpeg_6:0.8.13-1 libavfilter-extra-2_6:0.8.13-1 libavformat-extra-53_6:0.8.13-1 libswscale-extra-2_6:0.8.13-1 libswscale-dev_6:0.8.13-1 libavformat-dev_6:0.8.13-1 libav-doc_6:0.8.13-1 libavutil-extra-51_6:0.8.13-1 libpostproc-extra-52_6:0.8.13-1 libpostproc-dev_6:0.8.13-1 libavutil-dev_6:0.8.13-1

(32)

ffmpeg-dbg_6:0.8.13-1 libpostproc52_6:0.8.13-1 libav-extra-dbg_6:0.8.13-1 libavdevice-dev_6:0.8.13-1

58886 - Debian Linux 7.0 DSA-2978-1 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low

http://www.debian.org/security/2014/dsa-2978 Debian 7.0 all python-libxml2-dbg_2.8.0+dfsg1-7+wheezy1 libxml2-utils-dbg_2.8.0+dfsg1-7+wheezy1 libxml2-dbg_2.8.0+dfsg1-7+wheezy1 libxml2-doc_2.8.0+dfsg1-7+wheezy1 python-libxml2_2.8.0+dfsg1-7+wheezy1 libxml2_2.8.0+dfsg1-7+wheezy1 libxml2-dev_2.8.0+dfsg1-7+wheezy1 libxml2-utils_2.8.0+dfsg1-7+wheezy1

58888 - Debian Linux 7.0 DSA-2976-1 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low

http://www.debian.org/security/2014/dsa-2976 Debian 7.0 all libc0.1-i686_2.13-38+deb7u3 libc6-pic_2.13-38+deb7u3 libc0.1-dev-i386_2.13-38+deb7u3 libc6-prof_2.13-38+deb7u3 libnss-files-udeb_2.13-38+deb7u3 glibc-doc_2.13-38+deb7u3 libc6-dev-amd64_2.13-38+deb7u3

(33)

nscd_2.13-38+deb7u3 libc6-loongson2f_2.13-38+deb7u3 libc6.1-udeb_2.13-38+deb7u3 libc6-dbg_2.13-38+deb7u3 libc6-dev-i386_2.13-38+deb7u3 libc6.1_2.13-38+deb7u3 libc6-dev-mips64_2.13-38+deb7u3 libc0.1-i386_2.13-38+deb7u3 libc6_2.13-38+deb7u3 multiarch-support_2.13-38+deb7u3 libc0.1-pic_2.13-38+deb7u3 libc6-dev-mipsn32_2.13-38+deb7u3 libc6.1-prof_2.13-38+deb7u3 libc6-mipsn32_2.13-38+deb7u3 libc6-i386_2.13-38+deb7u3 libc6-s390x_2.13-38+deb7u3 libc6-sparc64_2.13-38+deb7u3 libc6-udeb_2.13-38+deb7u3 libc6-ppc64_2.13-38+deb7u3 libc6-dev-s390x_2.13-38+deb7u3 libc6.1-dbg_2.13-38+deb7u3 eglibc-source_2.13-38+deb7u3 libc6.1-pic_2.13-38+deb7u3 libc6-mips64_2.13-38+deb7u3 libc6-i686_2.13-38+deb7u3 libc0.1-dbg_2.13-38+deb7u3 libc-bin_2.13-38+deb7u3 libc6-dev-sparc64_2.13-38+deb7u3 libc0.1_2.13-38+deb7u3 libc0.1-prof_2.13-38+deb7u3 libc6.1-dev_2.13-38+deb7u3 libc6-dev-ppc64_2.13-38+deb7u3 libc6-amd64_2.13-38+deb7u3 libc6-dev-s390_2.13-38+deb7u3 libc-dev-bin_2.13-38+deb7u3 libc6-s390_2.13-38+deb7u3 libnss-dns-udeb_2.13-38+deb7u3 locales-all_2.13-38+deb7u3 locales_2.13-38+deb7u3 libc6-xen_2.13-38+deb7u3 libc6-dev_2.13-38+deb7u3 libc0.1-udeb_2.13-38+deb7u3 libc0.1-dev_2.13-38+deb7u3

85742 - CentOS 5, 6 CESA-2014-0866 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: Low

(34)

http://lists.centos.org/pipermail/centos-announce/2014-July/020405.html CentOS 5 x86_64 samba3x-swat-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 i386 samba3x-swat-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 CentOS 6 x86_64 samba-common-3.6.9-169.el6_5 samba-swat-3.6.9-169.el6_5 samba-3.6.9-169.el6_5 samba-doc-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 samba-winbind-krb5-locator-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 samba-winbind-devel-3.6.9-169.el6_5 libsmbclient-devel-3.6.9-169.el6_5 samba-domainjoin-gui-3.6.9-169.el6_5 i686 samba-common-3.6.9-169.el6_5 samba-swat-3.6.9-169.el6_5 samba-3.6.9-169.el6_5 samba-doc-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 samba-winbind-krb5-locator-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 samba-winbind-devel-3.6.9-169.el6_5 libsmbclient-devel-3.6.9-169.el6_5 samba-domainjoin-gui-3.6.9-169.el6_5

91529 - Oracle Enterprise Linux ELSA-2014-0866 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Low

(35)

http://oss.oracle.com/pipermail/el-errata/2014-July/004221.html http://oss.oracle.com/pipermail/el-errata/2014-July/004222.html OEL6 x86_64 samba-common-3.6.9-169.el6_5 samba-swat-3.6.9-169.el6_5 samba-3.6.9-169.el6_5 samba-doc-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 samba-winbind-krb5-locator-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 samba-winbind-devel-3.6.9-169.el6_5 libsmbclient-devel-3.6.9-169.el6_5 samba-domainjoin-gui-3.6.9-169.el6_5 i386 samba-common-3.6.9-169.el6_5 samba-swat-3.6.9-169.el6_5 samba-3.6.9-169.el6_5 samba-doc-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 samba-winbind-krb5-locator-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 samba-winbind-devel-3.6.9-169.el6_5 libsmbclient-devel-3.6.9-169.el6_5 samba-domainjoin-gui-3.6.9-169.el6_5 OEL5 x86_64 samba3x-swat-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 i386 samba3x-swat-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10

(36)

Risk Level: Low

https://www.mandriva.com/en/support/security/advisories/mbs1/MDVSA-2014:136/ Mandriva Linux mbs1 x86_64 samba-winbind-3.6.24-1 lib64smbsharemodes0-3.6.24-1 samba-server-3.6.24-1 lib64wbclient-devel-3.6.24-1 samba-virusfilter-clamav-3.6.24-1 samba-virusfilter-fsecure-3.6.24-1 lib64smbclient0-devel-3.6.24-1 lib64smbclient0-3.6.24-1 samba-common-3.6.24-1 nss_wins-3.6.24-1 samba-domainjoin-gui-3.6.24-1 lib64smbclient0-static-devel-3.6.24-1 lib64netapi-devel-3.6.24-1 samba-swat-3.6.24-1 samba-client-3.6.24-1 lib64smbsharemodes-devel-3.6.24-1 samba-doc-3.6.24-1 lib64wbclient0-3.6.24-1 samba-virusfilter-sophos-3.6.24-1

x86_64

python-2.7.3-4.7 python-docs-2.7.3-4.7

(37)

lib64python-devel-2.7.3-4.7 python-simplejson-2.3.3-2.1 tkinter-2.7.3-4.7

tkinter-apps-2.7.3-4.7

x86_64

lib64lzo-devel-2.08-1

140482 - Red Hat Enterprise Linux RHSA-2014-0866 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: Low

https://rhn.redhat.com/errata/RHSA-2014-0866.html RHEL5D x86_64 samba3x-swat-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-debuginfo-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 i386 samba3x-swat-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-debuginfo-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10

(38)

samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 RHEL5S x86_64 samba3x-swat-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-debuginfo-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 i386 samba3x-swat-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-debuginfo-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 RHEL6D x86_64 samba-debuginfo-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-common-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 i386 samba-debuginfo-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-common-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 RHEL6S x86_64 samba-3.6.9-169.el6_5 samba-debuginfo-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-common-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 i386 samba-3.6.9-169.el6_5 samba-debuginfo-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5

(39)

samba-common-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 RHEL6WS x86_64 samba-3.6.9-169.el6_5 samba-debuginfo-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-common-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 i386 samba-3.6.9-169.el6_5 samba-debuginfo-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-common-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5

142302 - SuSE SLES 11, 11 SP3, SLED 11, 11 SP3 puppet-9472 Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes

Risk Level: Low

The scan detected that the host is missing the following update: puppet-9472 Observation

http://download.novell.com/Download?buildid=1j7pptmK8S8~ http://download.novell.com/Download?buildid=MYx70I-ZJyc~ http://download.novell.com/Download?buildid=uGnlxWUqHOM~ http://download.novell.com/Download?buildid=Fe2dTGAH2Ag~ http://download.novell.com/Download?buildid=BR67ZZfWBd4~ http://download.novell.com/Download?buildid=vlTqTyiD4p8~ http://download.novell.com/Download?buildid=FXDdlI1NKfc~ http://download.novell.com/Download?buildid=Popu0R3YK4g~ http://download.novell.com/Download?buildid=jTd58ZWdtKQ~ SuSE SLED 11 SP3 x86_64 puppet-2.6.18-0.16.1 i586 puppet-2.6.18-0.16.1 SuSE SLES 11 SP3 x86_64 puppet-server-2.6.18-0.16.1 puppet-2.6.18-0.16.1

(40)

i586 puppet-server-2.6.18-0.16.1 puppet-2.6.18-0.16.1 SuSE SLED 11 x86_64 puppet-server-2.6.18-0.16.1 puppet-2.6.18-0.16.1 i586 puppet-server-2.6.18-0.16.1 puppet-2.6.18-0.16.1 SuSE SLES 11 x86_64 puppet-server-2.6.18-0.16.1 puppet-2.6.18-0.16.1 i586 puppet-server-2.6.18-0.16.1 puppet-2.6.18-0.16.1

142303 - SuSE Linux 12.3, 13.1 openSUSE-SU-2014:0890-1 Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes

The scan detected that the host is missing the following update: openSUSE-SU-2014:0890-1 Observation

http://lists.opensuse.org/opensuse-updates/2014-07/msg00015.html SuSE Linux 13.1 x86_64 libpython3_3m1_0-debuginfo-32bit-3.3.5-5.12.1 python-doc-2.7.6-8.10.1 python3-base-32bit-3.3.5-5.12.1 python-doc-pdf-2.7.6-8.10.1 python3-doc-3.3.5-5.12.1 python3-doc-pdf-3.3.5-5.12.1 python3-32bit-3.3.5-5.12.1 libpython3_3m1_0-32bit-3.3.5-5.12.1 python3-base-debuginfo-32bit-3.3.5-5.12.1 python3-debuginfo-32bit-3.3.5-5.12.1 python-base-debuginfo-32bit-2.7.6-8.10.1 libpython2_7-1_0-debuginfo-32bit-2.7.6-8.10.1 python-base-32bit-2.7.6-8.10.1 libpython2_7-1_0-32bit-2.7.6-8.10.1 python-debuginfo-32bit-2.7.6-8.10.1 python-32bit-2.7.6-8.10.1 i586 python3-debugsource-3.3.5-5.12.1

(41)

python3-base-3.3.5-5.12.1 python3-curses-debuginfo-3.3.5-5.12.1 python-base-debuginfo-2.7.6-8.10.1 python3-debuginfo-3.3.5-5.12.1 python-2.7.6-8.10.1 python-debugsource-2.7.6-8.10.1 python3-base-debuginfo-3.3.5-5.12.1 python-base-2.7.6-8.10.1 libpython2_7-1_0-debuginfo-2.7.6-8.10.1 python3-devel-3.3.5-5.12.1 python-xml-debuginfo-2.7.6-8.10.1 libpython3_3m1_0-debuginfo-3.3.5-5.12.1 python-curses-2.7.6-8.10.1 python3-3.3.5-5.12.1 python-curses-debuginfo-2.7.6-8.10.1 python3-testsuite-3.3.5-5.12.1 libpython3_3m1_0-3.3.5-5.12.1 python-gdbm-2.7.6-8.10.1 python-tk-2.7.6-8.10.1 python-devel-2.7.6-8.10.1 python3-tk-3.3.5-5.12.1 python3-base-debugsource-3.3.5-5.12.1 python-debuginfo-2.7.6-8.10.1 python3-curses-3.3.5-5.12.1 libpython2_7-1_0-2.7.6-8.10.1 python3-tools-3.3.5-5.12.1 python3-testsuite-debuginfo-3.3.5-5.12.1 python3-tk-debuginfo-3.3.5-5.12.1 python-gdbm-debuginfo-2.7.6-8.10.1 python-base-debugsource-2.7.6-8.10.1 python3-dbm-3.3.5-5.12.1 python-idle-2.7.6-8.10.1 python3-devel-debuginfo-3.3.5-5.12.1 python-demo-2.7.6-8.10.1 python3-dbm-debuginfo-3.3.5-5.12.1 python-tk-debuginfo-2.7.6-8.10.1 python3-idle-3.3.5-5.12.1 python-xml-2.7.6-8.10.1 SuSE Linux 12.3 x86_64 python-32bit-2.7.3-10.16.1 python3-32bit-3.3.0-6.19.1 python-debuginfo-32bit-2.7.3-10.16.1 python-doc-2.7-10.16.1 libpython3_3m1_0-32bit-3.3.0-6.19.1 python3-base-32bit-3.3.0-6.19.1 python-base-debuginfo-32bit-2.7.3-10.16.1 libpython3_3m1_0-debuginfo-32bit-3.3.0-6.19.1 libpython2_7-1_0-debuginfo-32bit-2.7.3-10.16.1 libpython2_7-1_0-32bit-2.7.3-10.16.1 python3-debuginfo-32bit-3.3.0-6.19.1 python-doc-pdf-2.7-10.16.1 python3-base-debuginfo-32bit-3.3.0-6.19.1 python3-doc-pdf-3.3.0-6.19.1 python-base-32bit-2.7.3-10.16.1 python3-doc-3.3.0-6.19.1 i586 libpython2_7-1_0-2.7.3-10.16.1

(42)

python3-tools-3.3.0-6.19.1 python-curses-debuginfo-2.7.3-10.16.1 python3-base-debugsource-3.3.0-6.19.1 python-debugsource-2.7.3-10.16.1 python3-tk-3.3.0-6.19.1 python-gdbm-debuginfo-2.7.3-10.16.1 python3-curses-debuginfo-3.3.0-6.19.1 python3-testsuite-3.3.0-6.19.1 python-idle-2.7.3-10.16.1 python-curses-2.7.3-10.16.1 libpython3_3m1_0-3.3.0-6.19.1 python3-3.3.0-6.19.1 python3-base-3.3.0-6.19.1 libpython3_3m1_0-debuginfo-3.3.0-6.19.1 python-2.7.3-10.16.1 python3-debugsource-3.3.0-6.19.1 python3-dbm-3.3.0-6.19.1 python-base-2.7.3-10.16.1 python-base-debuginfo-2.7.3-10.16.1 python-tk-debuginfo-2.7.3-10.16.1 python-xml-2.7.3-10.16.1 libpython2_7-1_0-debuginfo-2.7.3-10.16.1 python3-base-debuginfo-3.3.0-6.19.1 python-tk-2.7.3-10.16.1 python3-curses-3.3.0-6.19.1 python-devel-2.7.3-10.16.1 python3-devel-debuginfo-3.3.0-6.19.1 python3-debuginfo-3.3.0-6.19.1 python-gdbm-2.7.3-10.16.1 python3-testsuite-debuginfo-3.3.0-6.19.1 python-xml-debuginfo-2.7.3-10.16.1 python-base-debugsource-2.7.3-10.16.1 python-demo-2.7.3-10.16.1 python3-idle-3.3.0-6.19.1 python3-dbm-debuginfo-3.3.0-6.19.1 python3-devel-3.3.0-6.19.1 python3-tk-debuginfo-3.3.0-6.19.1 python-debuginfo-2.7.3-10.16.1

174517 - Scientific Linux Security ERRATA Moderate: samba and samba3x on SL5.x, SL6.x i386/srpm/x86_64 (1407-554)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: Low

The scan detected that the host is missing the following update: Security ERRATA Moderate: samba and samba3x on SL5.x, SL6.x i386/srpm/x86_64 (1407-554)

Observation

http://listserv.fnal.gov/scripts/wa.exe?A2=ind1407&L=scientific-linux-errata&T=0&P=554 SL6

(43)

samba-domainjoin-gui-3.6.9-169.el6_5 samba-common-3.6.9-169.el6_5 samba-swat-3.6.9-169.el6_5 samba-doc-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 samba-winbind-krb5-locator-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-debuginfo-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 samba-winbind-devel-3.6.9-169.el6_5 libsmbclient-devel-3.6.9-169.el6_5 samba-3.6.9-169.el6_5 i386 samba-domainjoin-gui-3.6.9-169.el6_5 samba-common-3.6.9-169.el6_5 samba-swat-3.6.9-169.el6_5 samba-debuginfo-3.6.9-169.el6_5 samba-doc-3.6.9-169.el6_5 samba-winbind-clients-3.6.9-169.el6_5 samba-winbind-3.6.9-169.el6_5 samba-winbind-krb5-locator-3.6.9-169.el6_5 libsmbclient-3.6.9-169.el6_5 samba-client-3.6.9-169.el6_5 samba-winbind-devel-3.6.9-169.el6_5 libsmbclient-devel-3.6.9-169.el6_5 samba-3.6.9-169.el6_5 noarch samba-debuginfo-3.6.9-169.el6_5 SL5 x86_64 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-debuginfo-3.6.6-0.140.el5_10 samba3x-swat-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 i386 samba3x-swat-3.6.6-0.140.el5_10 samba3x-winbind-devel-3.6.6-0.140.el5_10 samba3x-common-3.6.6-0.140.el5_10 samba3x-debuginfo-3.6.6-0.140.el5_10 samba3x-client-3.6.6-0.140.el5_10 samba3x-doc-3.6.6-0.140.el5_10 samba3x-winbind-3.6.6-0.140.el5_10 samba3x-domainjoin-gui-3.6.6-0.140.el5_10 samba3x-3.6.6-0.140.el5_10 noarch samba3x-debuginfo-3.6.6-0.140.el5_10

(44)

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low

Description

https://lists.ubuntu.com/archives/ubuntu-security-announce/2014-July/002583.html Ubuntu 13.10 libavformat53_0.8.13-0ubuntu0.13.10.1 libavcodec53_0.8.13-0ubuntu0.13.10.1 Ubuntu 12.04 libavformat53_0.8.13-0ubuntu0.12.04.1 libavcodec53_0.8.13-0ubuntu0.12.04.1

Risk Level: Low

ansible-1.6.6-1.fc19

Risk Level: Low Description