Huawei EulerOS Local Security Checks : Huawei EulerOS: Security Advisory for cronie (EulerOS-SA-2020-1468)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.2.2020.1468

Categoría: Huawei EulerOS Local Security Checks

Título: Huawei EulerOS: Security Advisory for cronie (EulerOS-SA-2020-1468)

Resumen: The remote host is missing an update for the Huawei EulerOS 'cronie' package(s) announced via the EulerOS-SA-2020-1468 advisory.

Descripción: Summary:
The remote host is missing an update for the Huawei EulerOS 'cronie' package(s) announced via the EulerOS-SA-2020-1468 advisory.

Vulnerability Insight:
Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service (memory consumption) via a large crontab file because an unlimited number of lines is accepted.(CVE-2019-9705)

Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service (daemon crash) via a large crontab file because the calloc return value is not checked.(CVE-2019-9704)

Affected Software/OS:
'cronie' package(s) on Huawei EulerOS Virtualization 3.0.2.2.

Solution:
Please install the updated package(s).

CVSS Score:
2.1

CVSS Vector:
AV:L/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2019-9704
BugTraq ID: 107373
http://www.securityfocus.com/bid/107373
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6DU7HAUAQR4E4AEBPYLUV6FZ4PHKH6A2/
https://salsa.debian.org/debian/cron/commit/f2525567
https://lists.debian.org/debian-lts-announce/2019/03/msg00025.html
Common Vulnerability Exposure (CVE) ID: CVE-2019-9705
BugTraq ID: 107378
http://www.securityfocus.com/bid/107378
https://salsa.debian.org/debian/cron/commit/26814a26

Copyright Copyright (C) 2020 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.2.2020.1468
Categoría:	Huawei EulerOS Local Security Checks
Título:	Huawei EulerOS: Security Advisory for cronie (EulerOS-SA-2020-1468)
Resumen:	The remote host is missing an update for the Huawei EulerOS 'cronie' package(s) announced via the EulerOS-SA-2020-1468 advisory.
Descripción:	Summary: The remote host is missing an update for the Huawei EulerOS 'cronie' package(s) announced via the EulerOS-SA-2020-1468 advisory. Vulnerability Insight: Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service (memory consumption) via a large crontab file because an unlimited number of lines is accepted.(CVE-2019-9705) Vixie Cron before the 3.0pl1-133 Debian package allows local users to cause a denial of service (daemon crash) via a large crontab file because the calloc return value is not checked.(CVE-2019-9704) Affected Software/OS: 'cronie' package(s) on Huawei EulerOS Virtualization 3.0.2.2. Solution: Please install the updated package(s). CVSS Score: 2.1 CVSS Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-9704 BugTraq ID: 107373 http://www.securityfocus.com/bid/107373 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6DU7HAUAQR4E4AEBPYLUV6FZ4PHKH6A2/ https://salsa.debian.org/debian/cron/commit/f2525567 https://lists.debian.org/debian-lts-announce/2019/03/msg00025.html Common Vulnerability Exposure (CVE) ID: CVE-2019-9705 BugTraq ID: 107378 http://www.securityfocus.com/bid/107378 https://salsa.debian.org/debian/cron/commit/26814a26
Copyright	Copyright (C) 2020 Greenbone Networks GmbH