Scientific Linux Security Update : apr on SL6.x, SL7.x i386/x86_64
Low Nessus Plugin ID 104866
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionSecurity Fix(es) :
- An out-of-bounds array dereference was found in apr_time_exp_get(). An attacker could abuse an unvalidated usage of this function to cause a denial of service or potentially lead to data leak.
SolutionUpdate the affected apr, apr-debuginfo and / or apr-devel packages.