oval:org.mitre.oval:def:23758

Definition Id: oval:org.mitre.oval:def:23758

Oval ID:	oval:org.mitre.oval:def:23758
Title:	ELSA-2012:0451: rpm security update (Important)
Description:	The headerVerifyInfo function in lib/header.c in RPM before 4.9.1.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a negative value in a region offset of a package header, which is not properly handled in a numeric range comparison.
Family:	unix	Class:	patch
Reference(s):	ELSA-2012:0451-03 CVE-2012-0060 CVE-2012-0061 CVE-2012-0815	Version:	17
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	rpm
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test rpm is earlier than 0:4.4.2.3-28.el5_8 AND rpm-python is earlier than 0:4.4.2.3-28.el5_8 AND rpm-libs is earlier than 0:4.4.2.3-28.el5_8 AND rpm-build is earlier than 0:4.4.2.3-28.el5_8 AND rpm-apidocs is earlier than 0:4.4.2.3-28.el5_8 AND popt is earlier than 0:1.10.2.3-28.el5_8 AND rpm-devel is earlier than 0:4.4.2.3-28.el5_8 OR rpm test Oracle Linux 6.x AND rpm test rpm-cron is earlier than 0:4.8.0-19.el6_2.1 AND rpm is earlier than 0:4.8.0-19.el6_2.1 AND rpm-libs is earlier than 0:4.8.0-19.el6_2.1 AND rpm-python is earlier than 0:4.8.0-19.el6_2.1 AND rpm-build is earlier than 0:4.8.0-19.el6_2.1 AND rpm-apidocs is earlier than 0:4.8.0-19.el6_2.1 AND rpm-devel is earlier than 0:4.8.0-19.el6_2.1

Definition Id: oval:org.mitre.oval:def:16594

Oval ID:	oval:org.mitre.oval:def:16594
Title:	Oracle Linux 6.x
Description:	The operating system installed on the system is Oracle Linux 6.x
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:oracle:linux:6	Version:	5
Platform(s):	Oracle Linux 6	Product(s):
Definition Synopsis:
the installed operating system is part of the Unix family AND Oracle Linux 6.x is installed
Referenced By:
oval:org.mitre.oval:def:23758

Definition Id: oval:org.mitre.oval:def:15459

Oval ID:	oval:org.mitre.oval:def:15459
Title:	Oracle Linux 5.x
Description:	The operating system installed on the system is Oracle Linux 5.x
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:oracle:linux:5	Version:	7
Platform(s):	Oracle Linux 5	Product(s):
Definition Synopsis:
the installed operating system is part of the Unix family AND Oracle Linux 5.x is installed
Referenced By:
oval:org.mitre.oval:def:23758