Fedora 8 : rubygem-actionmailer-2.1.1-1.fc8 / rubygem-actionpack-2.1.1-1.fc8 / etc (2008-8282)

This script is Copyright (C) 2008-2015 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing one or more security updates.

Description :

Fixes CVE-2008-4094 (SQL injection in limit and offset clauses)

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

https://bugzilla.redhat.com/show_bug.cgi?id=462302
https://bugzilla.redhat.com/show_bug.cgi?id=462303
https://bugzilla.redhat.com/show_bug.cgi?id=462304
https://bugzilla.redhat.com/show_bug.cgi?id=462306
https://bugzilla.redhat.com/show_bug.cgi?id=462307
https://bugzilla.redhat.com/show_bug.cgi?id=462308
http://www.nessus.org/u?be77cdc8
http://www.nessus.org/u?981c1243
http://www.nessus.org/u?b08001e8
http://www.nessus.org/u?674926fa
http://www.nessus.org/u?071e8ce4
http://www.nessus.org/u?b8cd099b
http://www.nessus.org/u?7b6547de

Solution :

Update the affected packages.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: Fedora Local Security Checks

Nessus Plugin ID: 34423 (fedora_2008-8282.nasl)

Bugtraq ID:

CVE ID: CVE-2008-4094

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now