oval:org.mitre.oval:def:26872

Definition Id: oval:org.mitre.oval:def:26872

Oval ID:	oval:org.mitre.oval:def:26872
Title:	ELSA-2014-1193 -- axis security update (Important)
Description:	Apache Axis is an implementation of SOAP (Simple Object Access Protocol). It can be used to build both web service clients and servers. It was discovered that Axis incorrectly extracted the host name from an X.509 certificate subject's Common Name (CN) field. A man-in-the-middle attacker could use this flaw to spoof an SSL server using a specially crafted X.509 certificate. (CVE-2014-3596) For additional information on this flaw, refer to the Knowledgebase article in the References section. This issue was discovered by David Jorm and Arun Neelicattu of Red Hat Product Security. All axis users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. Applications using Apache Axis must be restarted for this update to take effect.
Family:	unix	Class:	patch
Reference(s):	ELSA-2014-1193 CVE-2014-3596 CVE-2012-5784	Version:	3
Platform(s):	Oracle Linux 6 Oracle Linux 5	Product(s):	axis
Definition Synopsis:
Oracle Linux 6 release section Oracle Linux 6.x Packages match section axis RPM is earlier than 0:1.2.1-7.5.el6_5 AND axis-javadoc RPM is earlier than 0:1.2.1-7.5.el6_5 AND axis-manual RPM is earlier than 0:1.2.1-7.5.el6_5 AND Oracle Linux 5 release section Oracle Linux 5.x Packages match section axis RPM is earlier than 0:1.2.1-2jpp.8.el5_10 AND axis-javadoc RPM is earlier than 0:1.2.1-2jpp.8.el5_10 AND axis-manual RPM is earlier than 0:1.2.1-2jpp.8.el5_10

Definition Id: oval:org.mitre.oval:def:15459

Oval ID:	oval:org.mitre.oval:def:15459
Title:	Oracle Linux 5.x
Description:	The operating system installed on the system is Oracle Linux 5.x
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:oracle:linux:5	Version:	7
Platform(s):	Oracle Linux 5	Product(s):
Definition Synopsis:
the installed operating system is part of the Unix family AND Oracle Linux 5.x is installed
Referenced By:
oval:org.mitre.oval:def:26872

Definition Id: oval:org.mitre.oval:def:16594

Oval ID:	oval:org.mitre.oval:def:16594
Title:	Oracle Linux 6.x
Description:	The operating system installed on the system is Oracle Linux 6.x
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:oracle:linux:6	Version:	5
Platform(s):	Oracle Linux 6	Product(s):
Definition Synopsis:
the installed operating system is part of the Unix family AND Oracle Linux 6.x is installed
Referenced By:
oval:org.mitre.oval:def:26872

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0235s

Facebook rss twitter linkedin mail