Oracle Solaris Third-Party Patch Update : perl-58 (cve_2011_2728_denial_of)
Medium Nessus Plugin ID 80732
SynopsisThe remote Solaris system is missing a security patch for third-party software.
DescriptionThe remote Solaris system is missing necessary patches to address security updates :
- The bsd_glob function in the File::Glob module for Perl before 5.14.2 allows context-dependent attackers to cause a denial of service (crash) via a glob expression with the GLOB_ALTDIRFUNC flag, which triggers an uninitialized pointer dereference. (CVE-2011-2728)
SolutionUpgrade to Solaris 11/11 SRU 3.