openSUSE 10 Security Update : util-linux (util-linux-4552)
Medium Nessus Plugin ID 27514
SynopsisThe remote openSUSE host is missing a security update.
DescriptionInsufficient length checks when reading the passphrase for encrypted paritions in the mount program could cause a buffer overflow that could potentially be exploited to gain root privileges.
When executing helper program 'mount' didn't check the return value of setuid(). Therefore helper program could potenially run as root (CVE-2007-5191).
SolutionUpdate the affected util-linux package.