MDVSA-2009:269 -- Mandriva mono
|ID: oval:org.secpod.oval:def:300921||Date: (C)2012-01-07 (M)2017-10-04|
|Class: PATCH||Family: unix|
A vulnerability has been found and corrected in mono: The XML HMAC signature system did not correctly check certain lengths. If an attacker sent a truncated HMAC, it could bypass authentication, leading to potential privilege escalation . This update fixes this vulnerability.
|Mandriva Linux 2009.1|