Mandriva Linux Security Advisory : yelp (MDVSA-2008:175)
Critical Nessus Plugin ID 37661
SynopsisThe remote Mandriva Linux host is missing a security update.
DescriptionA format string vulnerability was discovered in yelp after version 2.19.90 and before 2.24 that could allow remote attackers to execute arbitrary code via format string specifiers in an invalid URI on the command-line or via URI helpers in Firefox, Evolution, or possibly other programs (CVE-2008-3533).
The updated packages have been patched to correct this issue.
SolutionUpdate the affected yelp package.