SuSE 10 Security Update : build (ZYPP Patch Number 7372)

This script is Copyright (C) 2011-2014 Tenable Network Security, Inc.


Synopsis :

The remote SuSE 10 host is missing a security-related patch.

Description :

The build script uses cpio to extract untrusted rpm packages for
bootstrapping virtual machines. cpio is not safe to use for this task,
therefore the build script now uses bsdtar instead. (CVE-2010-4226)

See also :

http://support.novell.com/security/cve/CVE-2010-4226.html

Solution :

Apply ZYPP patch number 7372.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N)

Family: SuSE Local Security Checks

Nessus Plugin ID: 53234 ()

Bugtraq ID:

CVE ID: CVE-2010-4226

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now