SuSE9 Security Update : nmap (YOU Patch Number 12009)

high Nessus Plugin ID 44653

Language:

Synopsis

The remote SuSE 9 host is missing a security-related patch.

Description

nmap contains a copy of the pcre library. Specially crafted regular expressions could lead to a buffer overflow in the pcre library.
Applications using pcre to process regular expressions from untrusted sources could therefore potentially be exploited by attackers to execute arbitrary code.

This update makes nmap use the system's pcre library which was already updated to fix the above mentioned problems. Make sure to also install the pcre update.

Solution

Apply YOU patch number 12009.

Plugin Details

Severity: High

ID: 44653

File Name: suse9_12009.nasl

Version: 1.6

Type: local

Agent: unix

Published: 2/18/2010

Updated: 1/14/2021

Supported Sensors: Nessus Agent, Nessus

Vulnerability Information

CPE: cpe:/o:suse:suse_linux

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 12/11/2007