Mandriva Linux Security Advisory : liblzo (MDVSA-2014:134)
Medium Nessus Plugin ID 76470
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionUpdated liblzo packages fix security vulnerability :
An integer overflow in liblzo before 2.07 allows attackers to cause a denial of service or possibly code execution in applications performing LZO decompression on a compressed payload from the attacker (CVE-2014-4607).
SolutionUpdate the affected lib64lzo-devel and / or lib64lzo2_2 packages.