oval:org.mitre.oval:def:13257

Definition Id: oval:org.mitre.oval:def:13257

Oval ID:	oval:org.mitre.oval:def:13257
Title:	USN-700-2 -- perl regression
Description:	USN-700-1 fixed vulnerabilities in Perl. Due to problems with the Ubuntu 8.04 build, some Perl .ph files were missing from the resulting update. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Jonathan Smith discovered that the Archive::Tar Perl module did not correctly handle symlinks when extracting archives. If a user or automated system were tricked into opening a specially crafted tar file, a remote attacker could over-write arbitrary files. Tavis Ormandy and Will Drewry discovered that Perl did not correctly handle certain utf8 characters in regular expressions. If a user or automated system were tricked into using a specially crafted expression, a remote attacker could crash the application, leading to a denial of service. Ubuntu 8.10 was not affected by this issue. A race condition was discovered in the File::Path Perl module�s rmtree function. If a local attacker successfully raced another user�s call of rmtree, they could create arbitrary setuid binaries. Ubuntu 6.06 and 8.10 were not affected by this issue. A race condition was discovered in the File::Path Perl module�s rmtree function. If a local attacker successfully raced another user�s call of rmtree, they could delete arbitrary files. Ubuntu 6.06 was not affected by this issue
Family:	unix	Class:	patch
Reference(s):	USN-700-2 CVE-2007-4829 CVE-2008-1927 CVE-2008-5302 CVE-2008-5303	Version:	5
Platform(s):	Ubuntu 8.04	Product(s):	perl
Definition Synopsis:
Ubuntu 8.04 is installed Architecture section Architecture independent section Installed architecture is all AND Packages section perl-modules DPKG is earlier than 5.8.8-12ubuntu0.4 AND perl-doc DPKG is earlier than 5.8.8-12ubuntu0.4 AND libcgi-fast-perl DPKG is earlier than 5.8.8-12ubuntu0.4 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is lpia AND Packages section libperl-dev DPKG is earlier than 5.8.8-12ubuntu0.4 AND perl-suid DPKG is earlier than 5.8.8-12ubuntu0.4 AND perl DPKG is earlier than 5.8.8-12ubuntu0.4 AND perl-base DPKG is earlier than 5.8.8-12ubuntu0.4 AND libperl5.8 DPKG is earlier than 5.8.8-12ubuntu0.4 AND perl-debug DPKG is earlier than 5.8.8-12ubuntu0.4

Definition Id: oval:org.mitre.oval:def:13250

Oval ID:	oval:org.mitre.oval:def:13250
Title:	Ubuntu 8.04 is installed
Description:	Ubuntu 8.04 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ubuntu:ubuntu_linux:8.04	Version:	3
Platform(s):	Ubuntu 8.04	Product(s):
Definition Synopsis:
Ubuntu 8.04 is installed
Referenced By:
oval:org.mitre.oval:def:13257

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0262s

Facebook rss twitter linkedin mail