Family: Red Hat Local Security Checks --> Category: infos
RHSA-2004-056: util Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the util packages
Detailed Explanation for this Vulnerability Test
Updated util-linux packages that fix an information leak in the login
program are now available.
The util-linux package contains a large variety of low-level system
utilities that are necessary for a Linux system to function.
In some situations, the login program could use a pointer that had been
freed and reallocated. This could cause unintentional data leakage.
Note: Red Hat Enterprise Linux 3 is not vulnerable to this issue.
It is recommended that all users upgrade to these updated packages, which
are not vulnerable to this issue.
Red Hat would like to thank Matthew Lee of Fleming College for finding and
reporting this issue.
Solution : http://rhn.redhat.com/errata/RHSA-2004-056.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.