Amazon Linux 2 : filesystem (ALAS-2019-1190)

high Nessus Plugin ID 123757

Language:

Synopsis

The remote Amazon Linux 2 host is missing a security update.

Description

Images built for the Amazon Linux 2.0.20190313 release included system files with incorrect permissions applied.

Incorrect permissions were applied to the following file :

/etc/shadow

All users should upgrade to this updated package which corrects permissions for these files if they are not already in the expected state.

Solution

Run 'yum update filesystem' to update your system.

Plugin Details

Severity: High

ID: 123757

File Name: al2_ALAS-2019-1190.nasl

Version: 1.2

Type: local

Agent: unix

Family: Amazon Linux Local Security Checks

Published: 4/5/2019

Updated: 4/18/2019

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Vulnerability Information

CPE: p-cpe:/a:amazon:linux:filesystem, p-cpe:/a:amazon:linux:filesystem-content, cpe:/o:amazon:linux:2

Required KB Items: Host/local_checks_enabled, Host/AmazonLinux/release, Host/AmazonLinux/rpm-list

Patch Publication Date: 4/17/2019

Vulnerability Publication Date: 4/17/2019

Reference Information

ALAS: 2019-1190

Detections

Analytics