script_xref(name:"OpenPKG-SA", value:"OpenPKG-SA-2004.021");
should probably be...
script_xref(name:"OpenPKG-SA", value:"OpenPKG-SA-2004.021-apache");
OpenPKG uses a weird format for their security advisory keys; they
include the name of the package in question. In order to reference their
advisories directly, the entire string needs to be included in
script_xref().
This naming-scheme seems quite redundant to me, but that's their
prerogative.
--
Jan Fredrik Leversund <jfl@phalanx.no>
Phalanx Security Services <URL:http://www.phalanx.no/>
should probably be...
script_xref(name:"OpenPKG-SA", value:"OpenPKG-SA-2004.021-apache");
OpenPKG uses a weird format for their security advisory keys; they
include the name of the package in question. In order to reference their
advisories directly, the entire string needs to be included in
script_xref().
This naming-scheme seems quite redundant to me, but that's their
prerogative.
--
Jan Fredrik Leversund <jfl@phalanx.no>
Phalanx Security Services <URL:http://www.phalanx.no/>