oval:org.mitre.oval:def:21649

Definition Id: oval:org.mitre.oval:def:21649

Oval ID:	oval:org.mitre.oval:def:21649
Title:	RHSA-2011:1409: openssl security update (Moderate)
Description:	crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not initialize certain structure members, which makes it easier for remote attackers to bypass CRL validation by using a nextUpdate value corresponding to a time in the past.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:1409-01 CVE-2011-3207	Version:	4
Platform(s):	Red Hat Enterprise Linux 6	Product(s):	openssl
Definition Synopsis:
The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section openssl-devel is earlier than 0:1.0.0-10.el6_1.5 AND openssl-static is earlier than 0:1.0.0-10.el6_1.5 AND openssl-perl is earlier than 0:1.0.0-10.el6_1.5 AND openssl is earlier than 0:1.0.0-10.el6_1.5

Definition Id: oval:org.mitre.oval:def:20273

Oval ID:	oval:org.mitre.oval:def:20273
Title:	The operating system installed on the system is Red Hat Enterprise Linux 6
Description:	The operating system installed on the system is Red Hat Enterprise Linux 6.
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:redhat:enterprise_linux:6	Version:	6
Platform(s):	Red Hat Enterprise Linux 6	Product(s):
Definition Synopsis:
Red Hat Enterprise 6 is installed AND NOT Oracle Linux 6.x is installed
Referenced By:
oval:org.mitre.oval:def:21649