Fedora Core 6 : gnucash-2.0.5-1.fc6 (2007-256)

This script is Copyright (C) 2007-2015 Tenable Network Security, Inc.


Synopsis :

The remote Fedora Core host is missing a security update.

Description :

This updates GnuCash to version 2.0.5, the latest upstream release.

Major changes in this release include; o Fix some strings not being
translated. o Use guiles native sort and record. o Adjust how payment
dialog resizes. o Don't abort when F::Q fails to return a quote. o
Change Russian Ruble from RUR to RUB. o Fix security problem with tmp
filesystem and symlink attack. (CVE-2007-0007) o Add French and
Canadian French translation updates. o Do not crash on delete_event in
new user dialog. o Add sanity checks when accessing GncPluginPage. o
Make new windows the same size as the active one. o The New Turkish
Lira changed from TRL to TRY in 2005.

Thanks to Sami Farin for uncovering the /tmp file issue.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

http://www.nessus.org/u?2823b778

Solution :

Update the affected gnucash and / or gnucash-debuginfo packages.

Risk factor :

Low / CVSS Base Score : 3.6
(CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:P)

Family: Fedora Local Security Checks

Nessus Plugin ID: 24728 (fedora_2007-256.nasl)

Bugtraq ID:

CVE ID: CVE-2007-0007

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now