Lucene search
+L

Fedora Update for oath-toolkit FEDORA-2014-2875

🗓️ 16 Apr 2014 00:00:00Reported by Copyright (C) 2014 Greenbone Networks GmbHType 
openvas
 openvas
🔗 plugins.openvas.org👁 21 Views

Fedora Update for oath-toolkit FEDORA-2014-2875. OATH Toolkit provides components for one-time password authentication systems, including shared libraries, command line tools, and a PAM module. It supports technologies such as HOTP and TOTP algorithms and the PSKC format for managing secret key files

Related
Refs
Code
ReporterTitlePublishedViews
Family
cve
CVE-2013-7322
7 Mar 201420:00
cve
cvelist
CVE-2013-7322
7 Mar 201420:00
cvelist
debiancve
CVE-2013-7322
7 Mar 201420:00
debiancve
euvd
EUVD-2013-7098
7 Oct 202500:30
euvd
fedora
[SECURITY] Fedora 20 Update: oath-toolkit-2.4.1-3.fc20
15 Apr 201415:58
fedora
fedora
[SECURITY] Fedora 19 Update: oath-toolkit-2.4.1-1.fc19
22 Feb 201418:12
fedora
nessus
Fedora 19 : oath-toolkit-2.4.1-1.fc19 (2014-2534)
24 Feb 201400:00
nessus
nessus
Fedora 20 : oath-toolkit-2.4.1-3.fc20 (2014-2875)
16 Apr 201400:00
nessus
nessus
Mandriva Linux Security Advisory : oath-toolkit (MDVSA-2014:061)
17 Mar 201400:00
nessus
mageia
Updated oath-toolkit packages fix security vulnerability
25 Feb 201421:59
mageia
Rows per page
###############################################################################
# OpenVAS Vulnerability Test
#
# Fedora Update for oath-toolkit FEDORA-2014-2875
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");

if(description)
{
  script_id(867696);
  script_version("$Revision: 6629 $");
  script_tag(name:"last_modification", value:"$Date: 2017-07-10 08:33:41 +0200 (Mon, 10 Jul 2017) $");
  script_tag(name:"creation_date", value:"2014-04-16 11:20:25 +0530 (Wed, 16 Apr 2014)");
  script_cve_id("CVE-2013-7322");
  script_tag(name:"cvss_base", value:"4.9");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:S/C:P/I:P/A:N");
  script_name("Fedora Update for oath-toolkit FEDORA-2014-2875");

  tag_insight = "The OATH Toolkit provide components for building one-time password
authentication systems. It contains shared libraries, command line tools and a
PAM module. Supported technologies include the event-based HOTP algorithm
(RFC4226) and the time-based TOTP algorithm (RFC6238). OATH stands for Open
AuTHentication, which is the organization that specify the algorithms. For
managing secret key files, the Portable Symmetric Key Container (PSKC) format
described in RFC6030 is supported.
";

  tag_affected = "oath-toolkit on Fedora 20";

  tag_solution = "Please Install the Updated Packages.";


  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  script_xref(name: "FEDORA", value: "2014-2875");
  script_xref(name: "URL" , value: "https://lists.fedoraproject.org/pipermail/package-announce/2014-April/131624.html");
  script_summary("Check for the Version of oath-toolkit");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2014 Greenbone Networks GmbH");
  script_family("Fedora Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms");
  exit(0);
}


include("pkg-lib-rpm.inc");

release = get_kb_item("ssh/login/release");

res = "";
if(release == NULL){
  exit(0);
}

if(release == "FC20")
{

  if ((res = isrpmvuln(pkg:"oath-toolkit", rpm:"oath-toolkit~2.4.1~3.fc20", rls:"FC20")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

10 Jul 2017 00:00Current
6.4Medium risk
Vulners AI Score6.4
EPSS0.00884
21