oval:org.mitre.oval:def:27660

Definition Id: oval:org.mitre.oval:def:27660
 
Oval ID: oval:org.mitre.oval:def:27660
Title: DSA-3113-1 -- unzip security update
Description: Michele Spagnuolo of the Google Security Team discovered that unzip, an extraction utility for archives compressed in .zip format, is affected by heap-based buffer overflows within the CRC32 verification function (<a href="https://security-tracker.debian.org/tracker/CVE-2014-8139">CVE-2014-8139</a>), the test_compr_eb() function (<a href="https://security-tracker.debian.org/tracker/CVE-2014-8140">CVE-2014-8140</a>) and the getZip64Data() function (<a href="https://security-tracker.debian.org/tracker/CVE-2014-8141">CVE-2014-8141</a>), which may lead to the execution of arbitrary code.
Family: unix Class: patch
Reference(s): DSA-3113-1
CVE-2014-8139
CVE-2014-8140
CVE-2014-8141
 Version: 3
Platform(s): Debian GNU/Linux 7.0
Debian GNU/kFreeBSD 7.0
 Product(s): unzip
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19338
 
Oval ID: oval:org.mitre.oval:def:19338
Title: Debian 7 is installed
Description: Debian 7 (wheezy) is installed
Family: unix Class: inventory
Reference(s): cpe:/o:debian:debian:7
 Version: 7
Platform(s): Debian 7
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:27660
Definition Id: oval:org.mitre.oval:def:24894
 
Oval ID: oval:org.mitre.oval:def:24894
Title: Debian GNU/Linux is installed
Description: Debian GNU/Linux is installed
Family: unix Class: inventory
Reference(s): cpe:/o:debian:debian_gnu/linux
 Version: 3
Platform(s): Debian GNU/Linux
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:27660
Definition Id: oval:org.mitre.oval:def:24698
 
Oval ID: oval:org.mitre.oval:def:24698
Title: Debian GNU/kFreeBSD is installed
Description: Debian GNU/kFreeBSD is installed
Family: unix Class: inventory
Reference(s): cpe:/o:debian:debian_gnu/kfreebsd
 Version: 3
Platform(s): Debian GNU/kFreeBSD
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:27660