Mandriva Linux Security Advisory : pycrypto (MDVSA-2009:049-1)
Critical Nessus Plugin ID 37927
SynopsisThe remote Mandriva Linux host is missing a security update.
DescriptionA vulnerability have been discovered and corrected in PyCrypto ARC2 module 2.0.1, which allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large ARC2 key length (CVE-2009-0544).
The updated packages have been patched to prevent this.
The previous update package was not signed.
SolutionUpdate the affected pycrypto package.