openSUSE 10 Security Update : opensuse-updater (opensuse-updater-5262)

high Nessus Plugin ID 32454

Synopsis

The remote openSUSE host is missing a security update.

Description

This update fixes a symlink problem and two off-by-one vulnerabilities. The overflows can be considered no security problem but the symlink flaw could be used by local users to gain unauthorized access to information (like passwords).

Solution

Update the affected opensuse-updater package.

Plugin Details

Severity: High

ID: 32454

File Name: suse_opensuse-updater-5262.nasl

Version: 1.10

Type: local

Agent: unix

Family: SuSE Local Security Checks

Published: 5/28/2008

Updated: 1/14/2021

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Nessus

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:opensuse-updater, cpe:/o:novell:opensuse:10.2

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 5/21/2008

Detections

Analytics