oval:org.mitre.oval:def:22595

Definition Id: oval:org.mitre.oval:def:22595

Oval ID:	oval:org.mitre.oval:def:22595
Title:	ELSA-2009:0339: lcms security update (Moderate)
Description:	Multiple stack-based buffer overflows in the ReadSetOfCurves function in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file associated with a large integer value for the (1) input or (2) output channel, related to the ReadLUT_A2B and ReadLUT_B2A functions.
Family:	unix	Class:	patch
Reference(s):	ELSA-2009:0339-01 CVE-2009-0581 CVE-2009-0723 CVE-2009-0733	Version:	17
Platform(s):	Oracle Linux 5	Product(s):	lcms
Definition Synopsis:
Oracle Linux 5.x rpm test lcms is earlier than 0:1.18-0.1.beta1.el5_3.2 AND lcms-devel is earlier than 0:1.18-0.1.beta1.el5_3.2 AND python-lcms is earlier than 0:1.18-0.1.beta1.el5_3.2

Definition Id: oval:org.mitre.oval:def:15459

Oval ID:	oval:org.mitre.oval:def:15459
Title:	Oracle Linux 5.x
Description:	The operating system installed on the system is Oracle Linux 5.x
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:oracle:linux:5	Version:	7
Platform(s):	Oracle Linux 5	Product(s):
Definition Synopsis:
the installed operating system is part of the Unix family AND Oracle Linux 5.x is installed
Referenced By:
oval:org.mitre.oval:def:22595