Fedora 18 : gksu-polkit-0.0.3-8.gitf8ce834c.fc18 (2013-13616)

This script is Copyright (C) 2013-2016 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing a security update.

Description :

- Recreate tarball from proper sources; previous package
was shipping an unknown code tarball.

- Add proper patching for CVE-2012-5617/CVE-2013-4161, the
previous fix was creating a patch file and not patching
the code.

- Use proper bus name in service file to fix service
timeout.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

https://bugzilla.redhat.com/show_bug.cgi?id=883162
https://bugzilla.redhat.com/show_bug.cgi?id=987561
http://www.nessus.org/u?7435433a

Solution :

Update the affected gksu-polkit package.

Risk factor :

High / CVSS Base Score : 7.2
(CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 6.3
(CVSS2#E:ND/RL:OF/RC:ND)
Public Exploit Available : false

Family: Fedora Local Security Checks

Nessus Plugin ID: 69206 ()

Bugtraq ID: 56918

CVE ID: CVE-2012-5617
CVE-2013-4161

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now