oval:org.mitre.oval:def:12751

Definition Id: oval:org.mitre.oval:def:12751

Oval ID:	oval:org.mitre.oval:def:12751
Title:	DSA-1877-1 mysql-dfsg-5.0 -- denial of service/execution of arbitrary code
Description:	In MySQL 4.0.0 through 5.0.83, multiple format string vulnerabilities in the dispatch_command function in libmysqld/sql_parse.cc in mysqld allow remote authenticated users to cause a denial of service and potentially the execution of arbitrary code via format string specifiers in a database name in a COM_CREATE_DB or COM_DROP_DB request. For the stable distribution, this problem has been fixed in version 5.0.51a-24+lenny2. For the old stable distribution, this problem has been fixed in version 5.0.32-7etch11. We recommend that you upgrade your mysql packages.
Family:	unix	Class:	patch
Reference(s):	DSA-1877-1 CVE-2009-2446	Version:	5
Platform(s):	Debian GNU/Linux 5.0 Debian GNU/Linux 4.0	Product(s):	mysql-dfsg-5.0
Definition Synopsis:
Release section Debian GNU/Linux 5.0 is installed AND Architecture section Architecture independent section Installed architecture is all AND Packages section mysql-client DPKG is earlier than 5.0.51a-24+lenny2 AND mysql-common DPKG is earlier than 5.0.51a-24+lenny2 AND mysql-server DPKG is earlier than 5.0.51a-24+lenny2 OR Architecture depended section Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is mips AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section libmysqlclient15-dev DPKG is earlier than 5.0.51a-24+lenny2 AND mysql-client-5.0 DPKG is earlier than 5.0.51a-24+lenny2 AND libmysqlclient15off DPKG is earlier than 5.0.51a-24+lenny2 AND mysql-server-5.0 DPKG is earlier than 5.0.51a-24+lenny2 OR Release section Debian GNU/Linux 4.0 is installed. AND Architecture section Architecture independent section Installed architecture is all AND Packages section mysql-client DPKG is earlier than 5.0.32-7etch11 AND mysql-common DPKG is earlier than 5.0.32-7etch11 AND mysql-server DPKG is earlier than 5.0.32-7etch11 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is mips AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section libmysqlclient15-dev DPKG is earlier than 5.0.32-7etch11 AND mysql-client-5.0 DPKG is earlier than 5.0.32-7etch11 AND mysql-server-4.1 DPKG is earlier than 5.0.32-7etch11 AND mysql-server-5.0 DPKG is earlier than 5.0.32-7etch11 AND libmysqlclient15off DPKG is earlier than 5.0.32-7etch11

Definition Id: oval:org.mitre.oval:def:6513

Oval ID:	oval:org.mitre.oval:def:6513
Title:	Debian GNU/Linux 5.0 is installed
Description:	Debian GNU/Linux 5.0 (lenny) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:5.0	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 5.0 is installed
Referenced By:
oval:org.mitre.oval:def:12751

Definition Id: oval:org.mitre.oval:def:6461

Oval ID:	oval:org.mitre.oval:def:6461
Title:	Debian GNU/Linux 4.0 is installed.
Description:	Debian GNU/Linux 4.0 (etch) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:4.0	Version:	9
Platform(s):	Debian GNU/Linux 4.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 4.0 is installed
Referenced By:
oval:org.mitre.oval:def:12751

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0307s

Facebook rss twitter linkedin mail