Mandriva Linux Security Advisory : socat (MDVSA-2014:033)
Low Nessus Plugin ID 72531
SynopsisThe remote Mandriva Linux host is missing a security update.
DescriptionA vulnerability has been discovered and corrected in socat :
Stack-based buffer overflow in socat 126.96.36.199 through 188.8.131.52 and 2.0.0-b1 through 2.0.0-b6 allows local users to cause a denial of service (segmentation fault) via a long server name in the PROXY-CONNECT address in the command line (CVE-2014-0019).
The updated packages have been upgraded to the 184.108.40.206 version which is not vulnerable to this issue.
SolutionUpdate the affected socat package.