Mandriva Linux Security Advisory : libproxy (MDVSA-2012:172)
Critical Nessus Plugin ID 62972
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionA vulnerability has been discovered and corrected in libproxy :
Stack-based buffer overflow in the url::get_pac function in url.cpp in libproxy 0.4.x before 0.4.9 allows remote servers to have an unspecified impact via a large proxy.pac file (CVE-2012-4504).
The updated packages have been patched to correct this issue.
SolutionUpdate the affected packages.