TrustKeeper Scan Engine Update – November 21, 2014

The latest update to the TrustKeeper scan engine that powers our Trustwave Vulnerability Management product (including both internal and external vulnerability scanning) is now available. Highlights of the release include 10 new checks for 18 vulnerabilities.

New Vulnerability Test Highlights

FreeBSD

  • FreeBSD file Denial of Service Vulnerability (FreeBSD-SA-14:16.file, CVE-2012-1571, CVE-2013-7345, CVE-2014-1943, CVE-2014-2270)
  • FreeBSD hostapd Denial of Service Vulnerability (FreeBSD-SA-12:07.hostapd, CVE-2012-4445)
  • FreeBSD libc Denial of Service Vulnerability (FreeBSD-SA-13:02.libc, CVE-2010-2632)
  • FreeBSD linux Vulnerability (FreeBSD-SA-12:08.linux, CVE-2012-4576)
  • FreeBSD tcp Denial of Service Vulnerability (FreeBSD-SA-14:19.tcp, CVE-2004-0230)

ISC BIND

  • ISC BIND in FreeBSD Denial of Service Vulnerability (FreeBSD-SA-12:06.bind, CVE-2012-4244, CVE-2012-5166)
  • ISC BIND in FreeBSD Denial of Service Vulnerability (FreeBSD-SA-13:01.bind, CVE-2012-5688)
  • ISC BIND in FreeBSD Denial of Service Vulnerability (FreeBSD-SA-13:04.bind, CVE-2013-2266)

OpenSSL

  • OpenSSL in FreeBSD Denial of Service Vulnerability (FreeBSD-SA-13:03.openssl, CVE-2013-0166, CVE-2013-0169)
  • OpenSSL in FreeBSD Denial of Service Vulnerability (FreeBSD-SA-14:23.openssl, CVE-2014-3513, CVE-2014-3566, CVE-2014-3567, CVE-2014-3568)

How to Update?

All Trustwave customers using the TrustKeeper scan engine receive the updates automatically as soon as an update is available. No action is required.

Trustwave reserves the right to review all comments in the discussion below. Please note that for security and other reasons, we may not approve comments containing links.