Oracle Solaris Third-Party Patch Update : texinfo (cve_2006_4810_buffer_overflow)
Medium Nessus Plugin ID 80782
SynopsisThe remote Solaris system is missing a security patch for third-party software.
DescriptionThe remote Solaris system is missing necessary patches to address security updates :
- Buffer overflow in the readline function in util/texindex.c, as used by the (1) texi2dvi and (2) texindex commands, in texinfo 4.8 and earlier allows local users to execute arbitrary code via a crafted Texinfo file. (CVE-2006-4810)
SolutionUpgrade to Solaris 220.127.116.11.0.