ID de Prueba:	1.3.6.1.4.1.25623.1.0.852731
Categoría:	SuSE Local Security Checks
Título:	openSUSE: Security Advisory for nginx (openSUSE-SU-2019:2264-1)
Resumen:	The remote host is missing an update for the 'nginx'; package(s) announced via the openSUSE-SU-2019:2264-1 advisory.
Descripción:	Summary: The remote host is missing an update for the 'nginx' package(s) announced via the openSUSE-SU-2019:2264-1 advisory. Vulnerability Insight: This update for nginx fixes the following issues: Security issues fixed: - CVE-2019-9511: Fixed a denial of service by manipulating the window size and stream prioritization (bsc#1145579). - CVE-2019-9513: Fixed a denial of service caused by resource loops (bsc#1145580). - CVE-2019-9516: Fixed a denial of service caused by header leaks (bsc#1145582). This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or 'zypper patch'. Alternatively you can run the command listed for your product: - openSUSE Leap 15.0: zypper in -t patch openSUSE-2019-2264=1 Affected Software/OS: 'nginx' package(s) on openSUSE Leap 15.0. Solution: Please install the updated package(s). CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-9511 Bugtraq: 20190822 [SECURITY] [DSA 4505-1] nginx security update (Google Search) https://seclists.org/bugtraq/2019/Aug/40 Bugtraq: 20190902 [SECURITY] [DSA 4511-1] nghttp2 security update (Google Search) https://seclists.org/bugtraq/2019/Sep/1 CERT/CC vulnerability note: VU#605641 https://kb.cert.org/vuls/id/605641/ https://kc.mcafee.com/corporate/index?page=content&id=SB10296 https://security.netapp.com/advisory/ntap-20190823-0002/ https://security.netapp.com/advisory/ntap-20190823-0005/ https://support.f5.com/csp/article/K02591030 https://support.f5.com/csp/article/K02591030?utm_source=f5support&utm_medium=RSS https://www.synology.com/security/advisory/Synology_SA_19_33 Debian Security Information: DSA-4505 (Google Search) https://www.debian.org/security/2019/dsa-4505 Debian Security Information: DSA-4511 (Google Search) https://www.debian.org/security/2019/dsa-4511 Debian Security Information: DSA-4669 (Google Search) https://www.debian.org/security/2020/dsa-4669 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BP556LEG3WENHZI5TAQ6ZEBFTJB4E2IS/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XHTKU7YQ5EEP2XNSAV4M4VJ7QCBOJMOD/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/POPAEC4FWL4UU4LDEGPY5NPALU24FFQD/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LZLUYPYY3RX4ZJDWZRJIKSULYRJ4PXW7/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JUBYAF6ED3O4XCHQ5C2HYENJLXYXZC4M/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TAZZEVTCN2B4WT6AIBJ7XGYJMBTORJU5/ https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md https://www.oracle.com/security-alerts/cpujan2021.html https://www.oracle.com/security-alerts/cpuoct2020.html https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html RedHat Security Advisories: RHSA-2019:2692 https://access.redhat.com/errata/RHSA-2019:2692 RedHat Security Advisories: RHSA-2019:2745 https://access.redhat.com/errata/RHSA-2019:2745 RedHat Security Advisories: RHSA-2019:2746 https://access.redhat.com/errata/RHSA-2019:2746 RedHat Security Advisories: RHSA-2019:2775 https://access.redhat.com/errata/RHSA-2019:2775 RedHat Security Advisories: RHSA-2019:2799 https://access.redhat.com/errata/RHSA-2019:2799 RedHat Security Advisories: RHSA-2019:2925 https://access.redhat.com/errata/RHSA-2019:2925 RedHat Security Advisories: RHSA-2019:2939 https://access.redhat.com/errata/RHSA-2019:2939 RedHat Security Advisories: RHSA-2019:2949 https://access.redhat.com/errata/RHSA-2019:2949 RedHat Security Advisories: RHSA-2019:2955 https://access.redhat.com/errata/RHSA-2019:2955 RedHat Security Advisories: RHSA-2019:2966 https://access.redhat.com/errata/RHSA-2019:2966 RedHat Security Advisories: RHSA-2019:3041 https://access.redhat.com/errata/RHSA-2019:3041 RedHat Security Advisories: RHSA-2019:3932 https://access.redhat.com/errata/RHSA-2019:3932 RedHat Security Advisories: RHSA-2019:3933 https://access.redhat.com/errata/RHSA-2019:3933 RedHat Security Advisories: RHSA-2019:3935 https://access.redhat.com/errata/RHSA-2019:3935 RedHat Security Advisories: RHSA-2019:4018 https://access.redhat.com/errata/RHSA-2019:4018 RedHat Security Advisories: RHSA-2019:4019 https://access.redhat.com/errata/RHSA-2019:4019 RedHat Security Advisories: RHSA-2019:4020 https://access.redhat.com/errata/RHSA-2019:4020 RedHat Security Advisories: RHSA-2019:4021 https://access.redhat.com/errata/RHSA-2019:4021 SuSE Security Announcement: openSUSE-SU-2019:2114 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00032.html SuSE Security Announcement: openSUSE-SU-2019:2115 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00031.html SuSE Security Announcement: openSUSE-SU-2019:2120 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html SuSE Security Announcement: openSUSE-SU-2019:2232 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00003.html SuSE Security Announcement: openSUSE-SU-2019:2234 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00005.html SuSE Security Announcement: openSUSE-SU-2019:2264 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00014.html https://usn.ubuntu.com/4099-1/ Common Vulnerability Exposure (CVE) ID: CVE-2019-9513 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMNFX5MNYRWWIMO4BTKYQCGUDMHO3AXP/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4ZQGHE3WTYLYAYJEIDJVF2FIGQTAYPMC/ Common Vulnerability Exposure (CVE) ID: CVE-2019-9516 Bugtraq: 20190814 APPLE-SA-2019-08-13-5 SwiftNIO HTTP/2 1.5.0 (Google Search) https://seclists.org/bugtraq/2019/Aug/24 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/H472D5HPXN6RRXCNFML3BK5OYC52CXF2/ http://seclists.org/fulldisclosure/2019/Aug/16 RedHat Security Advisories: RHSA-2019:2946 https://access.redhat.com/errata/RHSA-2019:2946 RedHat Security Advisories: RHSA-2019:2950 https://access.redhat.com/errata/RHSA-2019:2950
Copyright	Copyright (C) 2019 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.