oval:org.mitre.oval:def:13184

Definition Id: oval:org.mitre.oval:def:13184

Oval ID:	oval:org.mitre.oval:def:13184
Title:	USN-1158-1 -- curl vulnerabilities
Description:	curl: HTTP, HTTPS, and FTP client and client libraries Details: Richard Silverman discovered that when doing GSSAPI authentication, libcurl unconditionally performs credential delegation, handing the server a copy of the client�s security credential. Wesley Miaw discovered that when zlib is enabled, libcurl does not properly restrict the amount of callback data sent to an application that requests automatic decompression. This might allow an attacker to cause a denial of service via an application crash or possibly execute arbitrary code with the privilege of the application. This issue only affected Ubuntu 8.04 LTS and Ubuntu 10.04 LTS. USN 818-1 fixed an issue with curl�s handling of SSL certificates with zero bytes in the Common Name. Due to a packaging error, the fix for this issue was not being applied during the build. This issue only affected Ubuntu 8.04 LTS. We apologize for the error. Original advisory Multiple vulnerabilities in curl.
Family:	unix	Class:	patch
Reference(s):	USN-1158-1 CVE-2011-2192 CVE-2010-0734 CVE-2009-2417	Version:	5
Platform(s):	Ubuntu 11.04 Ubuntu 8.04 Ubuntu 10.04 Ubuntu 10.10	Product(s):	curl
Definition Synopsis:
Release section Ubuntu 11.04 is installed AND Installed architecture is all AND Packages section libcurl3-nss DPKG is earlier than 7.21.3-1ubuntu1.2 AND libcurl3-gnutls DPKG is earlier than 7.21.3-1ubuntu1.2 AND libcurl3 DPKG is earlier than 7.21.3-1ubuntu1.2 OR Release section Ubuntu 8.04 is installed AND Installed architecture is all AND Packages section libcurl3-gnutls DPKG is earlier than 7.18.0-1ubuntu2.3 AND libcurl3 DPKG is earlier than 7.18.0-1ubuntu2.3 OR Release section Ubuntu 10.04 is installed AND Installed architecture is all AND Packages section libcurl3-gnutls DPKG is earlier than 7.19.7-1ubuntu1.1 AND libcurl3 DPKG is earlier than 7.19.7-1ubuntu1.1 OR Release section Ubuntu 10.10 is installed AND Installed architecture is all AND Packages section libcurl3-gnutls DPKG is earlier than 7.21.0-1ubuntu1.1 AND libcurl3 DPKG is earlier than 7.21.0-1ubuntu1.1

Definition Id: oval:org.mitre.oval:def:13089

Oval ID:	oval:org.mitre.oval:def:13089
Title:	Ubuntu 10.04 is installed
Description:	Ubuntu 10.04 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:canonical:ubuntu_linux:10.04	Version:	5
Platform(s):	Ubuntu 10.04	Product(s):
Definition Synopsis:
Ubuntu 10.04 is installed
Referenced By:
oval:org.mitre.oval:def:13184

Definition Id: oval:org.mitre.oval:def:14150

Oval ID:	oval:org.mitre.oval:def:14150
Title:	Ubuntu 11.04 is installed
Description:	Ubuntu 11.04 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:canonical:ubuntu_linux:11.04	Version:	5
Platform(s):	Ubuntu 11.04	Product(s):
Definition Synopsis:
Ubuntu 11.04 is installed
Referenced By:
oval:org.mitre.oval:def:13184

Definition Id: oval:org.mitre.oval:def:13134

Oval ID:	oval:org.mitre.oval:def:13134
Title:	Ubuntu 10.10 is installed
Description:	Ubuntu 10.10 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ubuntu:ubuntu_linux:10.10	Version:	3
Platform(s):	Ubuntu 10.10	Product(s):
Definition Synopsis:
Ubuntu 10.10 is installed
Referenced By:
oval:org.mitre.oval:def:13184

Definition Id: oval:org.mitre.oval:def:13250

Oval ID:	oval:org.mitre.oval:def:13250
Title:	Ubuntu 8.04 is installed
Description:	Ubuntu 8.04 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ubuntu:ubuntu_linux:8.04	Version:	3
Platform(s):	Ubuntu 8.04	Product(s):
Definition Synopsis:
Ubuntu 8.04 is installed
Referenced By:
oval:org.mitre.oval:def:13184

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0168s

Facebook rss twitter linkedin mail