Mandriva Update For Libproxy MDVSA-2012:172 (libproxy) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

A vulnerability has been discovered and corrected in libproxy: Stack-based buffer overflow in the url::get_pac function in url.cpp in libproxy 0.4.x before 0.4.9 allows remote servers to have an unspecified impact via a large proxy.pac file (CVE-2012-4504). The updated packages have been patched to correct this issue.

Affected

libproxy on Mandriva Linux 2011.0

Severity

Classification

CVE CVE-2012-4504

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:166 (c-client)
Mandrake Security Advisory MDVSA-2009:134 (firefox)
Mandrake Security Advisory MDVSA-2009:075 (firefox)
Mandrake Security Advisory MDVSA-2009:078 (evolution-data-server)
Mandrake Security Advisory MDVSA-2009:044 (firefox)

Mandriva Update for libproxy MDVSA-2012:172 (libproxy)

Take action and discover your vulnerabilities