Fedora Core 3 : perl-5.8.5-22.FC3 (2005-1145)

This script is Copyright (C) 2005-2015 Tenable Network Security, Inc.


Synopsis :

The remote Fedora Core host is missing a security update.

Description :

o Updated upstream fix for sprintf integer overflow vulnerabilities
CVE-2005-3962 and CVE-2005-3912, including new Sys::Syslog 0.08

o Updated fix for bug 136009 / MakeMaker LD_RUN_PATH issue: restore
previous default Red Hat behavior of removing the MakeMaker generated
LD_RUN_PATH setting from the link command . Document this removal, as
it contravenes upstream default behavior, and provide a
USE_MM_LD_RUN_PATH MakeMaker member to enable use of the MakeMaker
generated LD_RUN_PATH .

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

http://www.nessus.org/u?750f7f52

Solution :

Update the affected perl, perl-debuginfo and / or perl-suidperl
packages.

Risk factor :

Low / CVSS Base Score : 3.3
(CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 2.9
(CVSS2#E:ND/RL:OF/RC:ND)
Public Exploit Available : true

Family: Fedora Local Security Checks

Nessus Plugin ID: 20310 (fedora_2005-1145.nasl)

Bugtraq ID: 15629

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now