Linux Distros Unpatched Vulnerability : CVE-2017-7480

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rkhunter versions before 1.4.4 are vulnerable to file download over insecure channel when doing mirror update resulting into potential remote code execution...

SUSE CVE-2017-7480

rkhunter versions before 1.4.4 are vulnerable to file download over insecure channel when doing mirror update resulting into potential remote code execution...

Debian DLA-1039-1 : rkhunter security update

CVE-2017-7480 The original patch introduces new regex to better check for allowed download URLs. Other versions of the package in Jessie, Stretch and Sid don't apply that patch but just disable the download of everything by default via rkhunter.conf. In order to make this version consistent with...

[SECURITY] [DLA 1039-1] rkhunter security update

Package : rkhunter Version : 1.4.0-1+deb7u1 CVE ID : CVE-2017-7480 CVE-2017-7480 The original patch introduces new regex to better check for allowed download URLs. Other versions of the package in Jessie, Stretch and Sid dont apply that patch but just disable the download of everything by default...

CVE-2017-7480

rkhunter versions before 1.4.4 are vulnerable to file download over insecure channel when doing mirror update resulting into potential remote code execution...

CVE-2017-7480

CVE-2017-7480 affects rkhunter = 1.4.4 (or apply vendor-provided fixes/patches) to disable insecure behavior and ensure updates are performed securely. Exploit details and active exploitation status are not provided in the supplied documents.