Mandriva Update For Rpm MDVA-2011:057 (rpm) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

It was discovered the xz v5.0.0 (lzma) changes in MDVSA-2011:143 were incomplete. This advisory upgrades the xz package to the 5.0.3 version and the spec-helper package to the 0.30.5 version to be able to handle lzma files. Packages for 2009.0 are provided as of the Extended Maintenance Program. Please visit this link to learn more: http://store.mandriva.com/product_info.php?cPath=149&amp amp products_id=490

Affected

rpm on Mandriva Linux 2009.0, Mandriva Linux 2009.0/X86_64, Mandriva Enterprise Server 5, Mandriva Enterprise Server 5/X86_64

Severity

Classification

CVE CVE-2011-3378

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:173 (pidgin)
Mandrake Security Advisory MDVSA-2009:075 (firefox)
Mandrake Security Advisory MDVSA-2009:104 (udev)
Mandrake Security Advisory MDVSA-2009:072 (perl-MDK-Common)
Mandrake Security Advisory MDVSA-2009:020 (xine-lib)

Mandriva Update for rpm MDVA-2011:057 (rpm)

Take action and discover your vulnerabilities