SuSE 10 Security Update : openslp (ZYPP Patch Number 7187)
Medium Nessus Plugin ID 50842
SynopsisThe remote SuSE 10 host is missing a security-related patch.
DescriptionThe openslp daemon could run into an endless loop when receiving specially crafted packets (CVE-2010-3609). This has been fixed.
Additionally the following non-security bugs were fixed :
- This openSLP update extends the net.slp.isDABackup mechanism introduced with the previous update by a new configuration option 'DABackupLocalReg'.
- This option tells the openslp server to also backup local registrations. (bnc#597215)
- In addition, standard compliance was fixed by stripping leading and trailing white spaces when doing string comparisons of scopes.
SolutionApply ZYPP patch number 7187.