openSUSE 10 Security Update : perl-DBD-Pg (perl-DBD-Pg-6227)

high Nessus Plugin ID 39434

Synopsis

The remote openSUSE host is missing a security update.

Description

This update of perl-DBD-Pg fixes a heap-based buffer overflow in function pg_db_getline() (CVE-2009-0663) and a denial of service bug that could be triggered remotely (CVE-2009-1341).

Solution

Update the affected perl-DBD-Pg package.

Plugin Details

Severity: High

ID: 39434

File Name: suse_perl-DBD-Pg-6227.nasl

Version: 1.10

Type: local

Agent: unix

Published: 6/17/2009

Updated: 1/14/2021

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.8

CVSS v2

Risk Factor: High

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:perl-dbd-pg, cpe:/o:novell:opensuse:10.3

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 5/4/2009

Reference Information

CVE: CVE-2009-0663, CVE-2009-1341

CWE: 119, 200