This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing a security update.
Updated python-jinja2 packages fix security vulnerability :
Jinja2, a template engine written in pure python, was found to use
/tmp as a default directory for
jinja2.bccache.FileSystemBytecodeCache, which is insecure because the
/tmp directory is world-writable and the filenames used like
'FileSystemBytecodeCache' are often predictable. A malicious user
could exploit this bug to execute arbitrary code as another user
See also :
Update the affected python-jinja2 package.
Risk factor :
Medium / CVSS Base Score : 4.4
CVSS Temporal Score : 3.8
Public Exploit Available : true