Secunia and FrSIRT are both giving details of what they claim are Highly Critical exploits; http://secunia.com/advisories/26124/ If the issues are as serious as claimed, can we assume that the patch (v.2.2289) will be distributed with definitions, or shall we have to download it in due course? PS. Having just re-read the advisories, I'm wondering if these exploits actually only relate to versions earlier than 2.2? If so it does odd to make such a big deal of them, unless of course there are still lots of people using 2.1?
The vulnerabilities are reported in versions prior to update v.2.2289. Solution: Apply update v.2.2289 or later. We are already at version 2414
My apologies for raising an unnecessary issue! I had thought that the reference was to program versions, not definitons (although it was still pretty dumb on my part, given that we're now at 2.7.39!).