This script is Copyright (C) 2014-2017 Tenable Network Security, Inc.
The remote OracleVM host is missing a security update.
The remote OracleVM system is missing necessary patches to address
critical security updates :
- use setsid to get a controlling session and process
group [Orabug: 17346261] (Todd Vierling)
- fix (CVE-2014-3634) resolves: #1149148
- drop patch 5 which introduced a regression resolves:
#927405 reverts: #847568
- add a patch to prevent 'RepeatedMsgReduction' causing
missing hostnames resolves: #893197
- add a patch to enable specifying UID/GID as a number
- add a patch to prevent a segfault in gssapi resolves:
See also :
Update the affected rsyslog package.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 5.9
Public Exploit Available : true