oval:org.mitre.oval:def:23999

Definition Id: oval:org.mitre.oval:def:23999
 
Oval ID: oval:org.mitre.oval:def:23999
Title: RHSA-2014:0293: udisks security update (Important)
Description: The udisks package provides a daemon, a D-Bus API, and command line utilities for managing disks and storage devices. A stack-based buffer overflow flaw was found in the way udisks handled files with long path names. A malicious, local user could use this flaw to create a specially crafted directory structure that, when processed by the udisks daemon, could lead to arbitrary code execution with the privileges of the udisks daemon (root). (CVE-2014-0004) This issue was discovered by Florian Weimer of the Red Hat Product Security Team. All udisks users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.
Family: unix Class: patch
Reference(s): RHSA-2014:0293-00
CESA-2014:0293
CVE-2014-0004
 Version: 8
Platform(s): Red Hat Enterprise Linux 6
CentOS Linux 6
 Product(s): udisks
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:20273
 
Oval ID: oval:org.mitre.oval:def:20273
Title: The operating system installed on the system is Red Hat Enterprise Linux 6
Description: The operating system installed on the system is Red Hat Enterprise Linux 6.
Family: unix Class: inventory
Reference(s): cpe:/o:redhat:enterprise_linux:6
 Version: 6
Platform(s): Red Hat Enterprise Linux 6
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:23999
Definition Id: oval:org.mitre.oval:def:16337
 
Oval ID: oval:org.mitre.oval:def:16337
Title: The operating system installed on the system is CentOS Linux 6.x
Description: The operating system installed on the system is CentOS Linux 6.x
Family: unix Class: inventory
Reference(s): cpe:/o:centos:centos:6
 Version: 5
Platform(s): CentOS Linux 6
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:23999