Oracle Solaris Third-Party Patch Update : grep (cve_2012_5667_heap_buffer)
Medium Nessus Plugin ID 80634
SynopsisThe remote Solaris system is missing a security patch for third-party software.
DescriptionThe remote Solaris system is missing necessary patches to address security updates :
- Multiple integer overflows in GNU Grep before 2.11 might allow context-dependent attackers to execute arbitrary code via vectors involving a long input line that triggers a heap-based buffer overflow. (CVE-2012-5667)
SolutionUpgrade to Solaris 220.127.116.11.0.