Scientific Linux Security Update : rest on SL7.x x86_64
Medium Nessus Plugin ID 87572
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionIt was found that the OAuth implementation in librest, a helper library for RESTful services, incorrectly truncated the pointer returned by the rest_proxy_call_get_url call. An attacker could use this flaw to crash an application using the librest library.
After installing the update, all applications using librest must be restarted for the update to take effect.
SolutionUpdate the affected rest, rest-debuginfo and / or rest-devel packages.