This script is Copyright (C) 2004-2013 Tenable Network Security, Inc.
The remote Mandrake Linux host is missing a security update.
A vulnerability was discovered by Patrik Hornik in slocate versions up
to and including 2.7 where a carefully crafted database could overflow
a heap-based buffer. This could be exploited by a local user to gain
privileges of the 'slocate' group. The updated packages contain a
patch from Kevin Lindsay that causes slocate to drop privileges before
reading a user-supplied database.
Update the affected slocate package.
Risk factor :
Medium / CVSS Base Score : 4.6