SuSE 10 Security Update : xsupplicant (ZYPP Patch Number 2455)
High Nessus Plugin ID 29612
SynopsisThe remote SuSE 10 host is missing a security-related patch.
Descriptionxsupplicant has been upgraded to version 1.2.8, which includes bugfixes and one security fix :
- A post-authentication stack overflow in the EAP handling could be used by already authenticated attacker to overflow a stackbuffer and so potentially execute code.
SolutionApply ZYPP patch number 2455.