Mandriva Linux Security Advisory : graphviz (MDVSA-2014:248)
High Nessus Plugin ID 79993
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionUpdated graphviz packages fix security vulnerability :
Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vector, which are not properly handled in an error string (CVE-2014-9157).
SolutionUpdate the affected packages.