Mandrake Linux Security Advisory : cvs (MDKSA-2004:048)
High Nessus Plugin ID 14147
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionStefan Esser discovered that malformed 'Entry' lines in combination with Is-modified and Unchanged can be used to overflow malloc()ed memory in a way that can be remotely exploited.
The updated packages contain a patch to correct the problem.
SolutionUpdate the affected cvs package.