Test Kennung:	1.3.6.1.4.1.25623.1.0.850572
Kategorie:	SuSE Local Security Checks
Titel:	openSUSE: Security Advisory for percona-toolkit, xtrabackup (openSUSE-SU-2014:0333-1)
Zusammenfassung:	The remote host is missing an update for the 'percona-toolkit, xtrabackup'; package(s) announced via the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'percona-toolkit, xtrabackup' package(s) announced via the referenced advisory. Vulnerability Insight: percona-toolkit and xtrabackup were updated: - disable automatic version check for all tools [bnc#864194] Prevents transmission of version information to an external host in the default configuration. CVE-2014-2029 Can be used by owner of a Percona Server (or an attacker who can control this destination for the client) to collect arbitrary MySQL configuration parameters and execute commands (with -v). Now the version check needs to be requested via command line or global/tool specific/user configuration. (--version-check) - added /etc/percona-toolkit/percona-toolkit.conf configuration directory and template configuration file Affected Software/OS: percona-toolkit, xtrabackup on openSUSE 13.1 Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2014-2029 http://www.openwall.com/lists/oss-security/2014/02/19/14
Copyright	Copyright (C) 2014 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.