Mandriva Linux Security Advisory : libneon0.27 (MDVSA-2009:074)
Medium Nessus Plugin ID 37634
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionA security vulnerability has been identified and fixed in neon :
neon 0.28.0 through 0.28.2 allows remote servers to cause a denial of service (NULL pointer dereference and crash) via vectors related to Digest authentication and Digest domain parameter support (CVE-2008-3746).
The updated packages have been upgraded to version 0.28.3 to prevent this.
SolutionUpdate the affected packages.