[Openvas-discuss] [Openvas-announce] openvas-manager 1.0.4 released (highly recommended security fix)

Tim Brown timb at openvas.org
Mon Jan 24 12:31:40 CET 2011


On Wednesday 19 January 2011 16:12:23 Jan-Oliver Wagner wrote:
> 
> Main changes since 1.0.3:
> * A security-relevant bug has been fixed regarding email escalation
>   methods. Configured OpenVAS users were able to damage installation
>   and/or gain higher privileges.

As per http://www.openvas.org/security.html which describes the OpenVAS 
posture on security vulnerabilities in OpenVAS components, an advisory has 
been released for this issue.  The advisory can be found at 
http://www.openvas.org/OVSA20110118.html.

Tim
-- 
Tim Brown
<mailto:timb at openvas.org>
<http://www.openvas.org/>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.wald.intevation.org/pipermail/openvas-discuss/attachments/20110124/9b7bf1aa/attachment.asc>


More information about the Openvas-discuss mailing list