Amazon Linux 2 : ipmitool (ALAS-2020-1420)

The version of ipmitool installed on the remote host is prior to 1.8.18-9. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1420 advisory. It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN...

Important: ipmitool

Issue Overview: It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run...

EulerOS Virtualization for ARM 64 3.0.2.0 : ipmitool (EulerOS-SA-2020-1534)

According to the version of the ipmitool package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a...

Huawei EulerOS: Security Advisory for ipmitool (EulerOS-SA-2020-1534)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Important: Red Hat Security Advisory: ipmitool security update

An update for ipmitool is now available for Red Hat Enterprise Linux 7.5 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c

A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution...

Huawei EulerOS: Security Advisory for ipmitool (EulerOS-SA-2020-1392)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for ipmitool (EulerOS-SA-2020-1479)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 7 : ipmitool (RHSA-2020:1486)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1486 advisory. The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface IPMI...

EulerOS Virtualization 3.0.2.2 : ipmitool (EulerOS-SA-2020-1479)

According to the version of the ipmitool package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN...

OracleVM 3.3 : ipmitool (OVMSA-2020-0012)

The remote OracleVM system is missing necessary patches to address critical security updates : - Backport fix for CVE-2020-5208 - Fix missing return in ipmikontronoemmain - CID1261317 - rebase to latest stable upstream version - resolves: rhbz1253416 - remove the redundant OpenIMPI dependency -...

EulerOS 2.0 SP3 : ipmitool (EulerOS-SA-2020-1392)

According to the version of the ipmitool package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may...

Oracle Linux 6 : ipmitool (ELSA-2020-1331)

The remote Oracle Linux 6 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2020-1331 advisory. 1.8.15-3 - Backport fix for CVE-2020-5208 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Ness...

CentOS 6 : ipmitool (RHSA-2020:1331)

The remote CentOS Linux 6 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:1331 advisory. - It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buff...

CentOS: Security Advisory for ipmitool (CESA-2020:1331)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

ipmitool security update

1.8.15-3 - Backport fix for CVE-2020-5208...

Scientific Linux Security Update : ipmitool on SL6.x i386/x86_64 (20200406)

Security Fixes : - ipmitool: Buffer overflow in readfruareasection function in lib/ipmifru.c CVE-2020-5208 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid135261; scriptversion"1.4";...

Important: Red Hat Security Advisory: ipmitool security update

An update for ipmitool is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

RHEL 6 : ipmitool (RHSA-2020:1331)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:1331 advisory. The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface IPMI...

EulerOS Virtualization for ARM 64 3.0.6.0 : ipmitool (EulerOS-SA-2020-1337)

According to the version of the ipmitool packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An...