Fedora Core 10 FEDORA-2009-9550 (bugzilla) Network Vulnerability

Summary

The remote host is missing an update to bugzilla announced via advisory FEDORA-2009-9550.

Solution

Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update bugzilla' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-9550

Insight

Update Information: Update to upstream version 3.2.5 fixing two SQL injection security flaws (CVE-2009-3125, CVE-2009-3165) detailed in the upstream security advisory: http://www.bugzilla.org/security/3.0.8/ ChangeLog: * Fri Sep 11 2009 Emmanuel Seyman - 3.2.5-1 - Update to 3.2.5 (CVE-2009-3125, CVE-2009-3165 and CVE-2009-3166)

References

https://bugzilla.redhat.com/show_bug.cgi?id=522547

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-1213, CVE-2009-3125, CVE-2009-3165, CVE-2009-3166
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Take action and discover your vulnerabilities