SuSE9 Security Update : gnome-vfs2,gnome-vfs2-doc (YOU Patch Number 10010)
High Nessus Plugin ID 41069
SynopsisThe remote SuSE 9 host is missing a security-related patch.
DescriptionThis update fixes the following security problems :
- The VFS scripts contained in GNOME are vulnerable to attacks on temporary files as well as command execution via shell meta-characters. These bugs can be exploited by accessing a malformated archive file. (CVE-2004-0494)
- Insufficient checks when processing CDDB queries could lead to buffer and integer overflows. (CVE-2005-0706)
SolutionApply YOU patch number 10010.