Family: Mandrake Local Security Checks --> Category: infos
MDKA-2006:045: coreutils Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the coreutils package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKA-2006:045 (coreutils).
The coreutils package lacked several features due to a build
deficiency. As a result, the su program was not linked against the PAM
library, making it impossible for su to make use of advanced
authentication features that rely on the PAM library. As well, the cp
system utility did not keep extended attributes and ACLs in file
This has been corrected in the updated packages.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKA-2006:045
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.