oval:org.mitre.oval:def:7213

Definition Id: oval:org.mitre.oval:def:7213

Oval ID:	oval:org.mitre.oval:def:7213
Title:	DSA-1947 shibboleth-sp, shibboleth-sp2, opensaml2 -- missing input sanitising
Description:	Matt Elder discovered that Shibboleth, a federated web single sign-on system is vulnerable to script injection through redirection URLs
Family:	unix	Class:	patch
Reference(s):	DSA-1947 CVE-2009-3300	Version:	5
Platform(s):	Debian GNU/Linux 5.0 Debian GNU/Linux 4.0	Product(s):	shibboleth-sp shibboleth-sp2 opensaml2
Definition Synopsis:
Release section Debian GNU/Linux 5.0 is installed AND Architecture section Architecture independent section Installed architecture is all AND Packages section libshibsp-doc is earlier than 2.0.dfsg1-4+lenny2 AND libsaml2-doc is earlier than 2.0-2+lenny2 AND shibboleth-sp2-schemas is earlier than 2.0.dfsg1-4+lenny2 AND opensaml2-schemas is earlier than 2.0-2+lenny2 AND libshib6 is earlier than 1.3.1.dfsg1-3+lenny2 AND libsaml2-dev is earlier than 2.0-2+lenny2 AND libshib-dev is earlier than 1.3.1.dfsg1-3+lenny2 AND libshibsp1 is earlier than 2.0.dfsg1-4+lenny2 AND libapache2-mod-shib2 is earlier than 2.0.dfsg1-4+lenny2 AND libsaml2 is earlier than 2.0-2+lenny2 AND libapache2-mod-shib is earlier than 1.3.1.dfsg1-3+lenny2 AND opensaml2-tools is earlier than 2.0-2+lenny2 AND libshibsp-dev is earlier than 2.0.dfsg1-4+lenny2 AND libshib-target5 is earlier than 1.3.1.dfsg1-3+lenny2 OR Architecture dependent section Installed architecture is alpha AND Packages section libshib6 is earlier than 1.3.1.dfsg1-3+lenny2 AND libshib-dev is earlier than 1.3.1.dfsg1-3+lenny2 AND libshibsp1 is earlier than 2.0.dfsg1-4+lenny2 AND libapache2-mod-shib2 is earlier than 2.0.dfsg1-4+lenny2 AND libapache2-mod-shib is earlier than 1.3.1.dfsg1-3+lenny2 AND libshibsp-dev is earlier than 2.0.dfsg1-4+lenny2 AND libshib-target5 is earlier than 1.3.1.dfsg1-3+lenny2 OR Supported platform section Installed architecture is powerpc AND Packages section libshib6 is earlier than 1.3.1.dfsg1-3+lenny2 AND libshib-dev is earlier than 1.3.1.dfsg1-3+lenny2 AND libshib-target5 is earlier than 1.3.1.dfsg1-3+lenny2 AND libapache2-mod-shib is earlier than 1.3.1.dfsg1-3+lenny2 OR Release section Debian GNU/Linux 4.0 is installed. AND Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section libshib6 is earlier than 1.3f.dfsg1-2+etch2 AND libshib-dev is earlier than 1.3f.dfsg1-2+etch2 AND libshib-target5 is earlier than 1.3f.dfsg1-2+etch2 AND libapache2-mod-shib is earlier than 1.3f.dfsg1-2+etch2

Definition Id: oval:org.mitre.oval:def:6513

Oval ID:	oval:org.mitre.oval:def:6513
Title:	Debian GNU/Linux 5.0 is installed
Description:	Debian GNU/Linux 5.0 (lenny) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:5.0	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 5.0 is installed
Referenced By:
oval:org.mitre.oval:def:7213

Definition Id: oval:org.mitre.oval:def:6461

Oval ID:	oval:org.mitre.oval:def:6461
Title:	Debian GNU/Linux 4.0 is installed.
Description:	Debian GNU/Linux 4.0 (etch) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:4.0	Version:	9
Platform(s):	Debian GNU/Linux 4.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 4.0 is installed
Referenced By:
oval:org.mitre.oval:def:7213

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0418s

Facebook rss twitter linkedin mail