Fedora 10 : bugzilla-3.2.2-2.fc10 (2009-2417)

High Nessus Plugin ID 38079


The remote Fedora host is missing a security update.


- Thu Mar 5 2009 Itamar Reis Peixoto <itamar at ispbrasil.com.br> 3.2.2-2

- fix from BZ #474250 Comment #16, from Chris Eveleigh

- add python BR for contrib subpackage

- fix description

- change Requires perl-SOAP-Lite to perl(SOAP::Lite) according guidelines

- Sun Mar 1 2009 Itamar Reis Peixoto <itamar at ispbrasil.com.br> 3.2.2-1

- thanks to Chris Eveleigh <chris dot eveleigh at planningportal dot gov dot uk>

- for contributing with patches :-)

- Upgrade to upstream 3.2.2 to fix multiple security vulns

- Removed old perl_requires exclusions, added new ones for RADIUS, Oracle and sanitycheck.cgi

- Added Oracle to supported DBs in description (and moved line breaks)

- Include a patch to fix max_allowed_packet warnin when using with mysql

- Sat Feb 28 2009 Itamar Reis Peixoto <itamar at ispbrasil.com.br> 3.0.8-1

- Upgrade to 3.0.8, fix #466077 #438080

- fix macro in changelog rpmlint warning

- fix files-attr-not-set rpmlint warning for doc and contrib sub-packages

- Mon Feb 23 2009 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 3.0.4-4

- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild

- Mon Feb 2 2009 Stepan Kasal <skasal at redhat.com> - 3.0.4-3

- do not require perl-Email-Simple, it is (no longer) in use

- remove several explicit perl-* requires; the automatic dependencies do handle them

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.


Update the affected bugzilla package.

See Also











Plugin Details

Severity: High

ID: 38079

File Name: fedora_2009-2417.nasl

Version: $Revision: 1.13 $

Type: local

Agent: unix

Published: 2009/04/23

Modified: 2016/12/08

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 7.5

Temporal Score: 6.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:bugzilla, cpe:/o:fedoraproject:fedora:10

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2009/03/05

Reference Information

CVE: CVE-2008-4437, CVE-2008-6098, CVE-2009-0481, CVE-2009-0482, CVE-2009-0483, CVE-2009-0484, CVE-2009-0485, CVE-2009-0486

BID: 30661, 32178

FEDORA: 2009-2417

CWE: 22, 79, 264, 352