SuSE 10 Security Update : quagga (ZYPP Patch Number 7237)

This script is Copyright (C) 2010-2012 Tenable Network Security, Inc.

Synopsis :

The remote SuSE 10 host is missing a security-related patch.

Description :

This update of quagga fixes two security issues :

- Stack-based buffer overflow while processing malformed
Route-Refresh messages. (CVE-2010-2948: CVSS v2 Base
Score: 6.5 (MEDIUM) (AV:N/AC:L/Au:S/C:P/I:P/A:P))

- Denial of service while processing malformed BGP update
AS path messages. (CVE-2010-2949: CVSS v2 Base Score:
5.0 (MEDIUM) (AV:N/AC:L/Au:N/C:N/I:N/A:P))

See also :

Solution :

Apply ZYPP patch number 7237.

Risk factor :

Medium / CVSS Base Score : 6.5

Family: SuSE Local Security Checks

Nessus Plugin ID: 50822 ()

Bugtraq ID:

CVE ID: CVE-2010-2948

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now