MDKA-2007:027 : php-session

This script is Copyright (C) 2007-2011 Tenable Network Security, Inc.


Synopsis :

The remote Mandrake host is missing one or more security-related
patches.

Description :

The php-session package includes a cron setting to remove PHP
sessions that are no longer in use. Previously, it could expire the
session even if it was still in use. This update will prevent the
cron job from removing sessions that are still actively being used,
and will only expire after the last action done in the session is
older than the number of minutes defined in /var/lib/php/maxlifetime.

See also :

http://www.mandriva.com/security/advisories?name=MDKA-2007:027

Solution :

Update the affected package(s).

Risk factor :

High

Family: Mandriva Local Security Checks

Nessus Plugin ID: 25112 (mandrake_MDKA-2007-027.nasl)

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now