{"id":5519,"date":"2015-12-30T16:08:36","date_gmt":"2015-12-30T08:08:36","guid":{"rendered":"http:\/\/rmohan.com\/?p=5519"},"modified":"2015-12-30T16:08:36","modified_gmt":"2015-12-30T08:08:36","slug":"centos6-x-risk-vulnerabilities","status":"publish","type":"post","link":"https:\/\/mohan.sg\/?p=5519","title":{"rendered":"CentOS6.x risk vulnerabilities"},"content":{"rendered":"<p>This article is only for the Green League vulnerability scan results, in RHEL \/ CentOS \/ OEL5.x x64-bit versions exist as high-risk vulnerabilities, where finishing solutions, again through vulnerability scanning, vulnerability has been patched.<br \/>\nHigh-risk<br \/>\nOpenSSH &#8216;schnorr.c&#8217; remote memory corruption vulnerability (CVE-2014-1692)<br \/>\nOpenSSH J-PAKE licensing issues Vulnerability (CVE-2010-4478)<br \/>\nOpenSSH GSSAPI remote code execution vulnerability (CVE-2006-5051)<br \/>\nGNU Bash environment variable remote Command Execution Vulnerability (CVE-2014-6271)<br \/>\nGNU Wget symlink vulnerability (CVE-2014-4877)<br \/>\nThe risk<br \/>\nOpenSSH default server configuration Denial of Service Vulnerability (CVE-2010-5107)<br \/>\nOpenSSH glob expression Denial of Service Vulnerability (CVE-2010-4755)<br \/>\nOpenSSH Licenses and Access Control Vulnerability (CVE-2014-2532)<br \/>\nOpenSSH verify_host_key function SSHFP DNS RR Check Bypass Vulnerability (CVE-2014-2653)<br \/>\nOpenSSH S \/ Key Remote Information Disclosure Vulnerability (CVE-2007-2243)<\/p>\n<p>1. RHEL \/CentOS\/OEL5\/6.x x64-bit versions of the operating system vulnerabilities Galway to upgrade openssh 6.6p1, would eliminate the loopholes in the following school risk, low-risk vulnerabilities can ignored.<br \/>\n(1) using the original source package installation<br \/>\n(2) using rpm installation package upgrade installation, this uses rpm package upgrade patch.<\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>This article is only for the Green League vulnerability scan results, in RHEL \/ CentOS \/ OEL5.x x64-bit versions exist as high-risk vulnerabilities, where finishing solutions, again through vulnerability scanning, vulnerability has been patched. High-risk OpenSSH &#8216;schnorr.c&#8217; remote memory corruption vulnerability (CVE-2014-1692) OpenSSH J-PAKE licensing issues Vulnerability (CVE-2010-4478) OpenSSH GSSAPI remote code execution vulnerability (CVE-2006-5051) [&#8230;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[20],"tags":[],"_links":{"self":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/5519"}],"collection":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=5519"}],"version-history":[{"count":1,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/5519\/revisions"}],"predecessor-version":[{"id":5520,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/5519\/revisions\/5520"}],"wp:attachment":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=5519"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=5519"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=5519"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}