openSUSE Security Update : cifs-mount (cifs-mount-410)
High Nessus Plugin ID 40197
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update fixes a bug that allowed the client to retrieve arbitrary memory content from the server process. (CVE-2008-4314) Additionally another bug was fixed that affects environments that enabled registry shares by setting 'registry shares = yes'. In this case an authenticated user is accidentally allowed to access the root filesystem '/'. (CVE-2009-0022)
SolutionUpdate the affected cifs-mount packages.