Download
| Alert*
oval:org.secpod.oval:def:302927
A vulnerability has been discovered and corrected in arpwatch: arpwatch 2.1a15, as used by Red Hat, Debian, Fedora, and possibly others, does not properly drop supplementary groups, which might allow attackers to gain root privileges by leveraging other vulnerabilities in the daemon . The updated pa ... oval:org.secpod.oval:def:600820 Vreixo Formoso discovered that libgdata, a library used to access various Google services, wasn"t validating certificates against trusted system root CAs when using an https connection. oval:org.secpod.oval:def:600822 Steve Grubb from Red Hat discovered that a patch for arpwatch in order to make it drop root privileges would fail to do so and instead add the root group to the list of the daemon uses. oval:org.secpod.oval:def:103924 The arpwatch package contains arpwatch and arpsnmp. Arpwatch and arpsnmp are both network monitoring tools. Both utilities monitor Ethernet or FDDI network traffic and build databases of Ethernet/IP address pairs, and can report certain changes via email. Install the arpwatch package if you need net ... oval:org.secpod.oval:def:103925 The arpwatch package contains arpwatch and arpsnmp. Arpwatch and arpsnmp are both network monitoring tools. Both utilities monitor Ethernet or FDDI network traffic and build databases of Ethernet/IP address pairs, and can report certain changes via email. Install the arpwatch package if you need net ... oval:org.secpod.oval:def:103918 The arpwatch package contains arpwatch and arpsnmp. Arpwatch and arpsnmp are both network monitoring tools. Both utilities monitor Ethernet or FDDI network traffic and build databases of Ethernet/IP address pairs, and can report certain changes via email. Install the arpwatch package if you need net ... |