oval:org.mitre.oval:def:7802

Definition Id: oval:org.mitre.oval:def:7802

Oval ID:	oval:org.mitre.oval:def:7802
Title:	DSA-1659 libspf2 -- buffer overflow
Description:	Dan Kaminsky discovered that libspf2, an implementation of the Sender Policy Framework (SPF) used by mail servers for mail filtering, handles malformed TXT records incorrectly, leading to a buffer overflow condition (CVE-2008-2469). Note that the SPF configuration template in Debian's Exim configuration recommends to use libmail-spf-query-perl, which does not suffer from this issue.
Family:	unix	Class:	patch
Reference(s):	DSA-1659 CVE-2008-2469	Version:	3
Platform(s):	Debian GNU/Linux 4.0	Product(s):	libspf2
Definition Synopsis:
Debian GNU/Linux 4.0 is installed. Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa Packages section libspf2-2 is earlier than 1.2.5-4+etch1 AND libspf2-dev is earlier than 1.2.5-4+etch1 AND spfquery is earlier than 1.2.5-4+etch1

Definition Id: oval:org.mitre.oval:def:6461

Oval ID:	oval:org.mitre.oval:def:6461
Title:	Debian GNU/Linux 4.0 is installed.
Description:	Debian GNU/Linux 4.0 (etch) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:4.0	Version:	9
Platform(s):	Debian GNU/Linux 4.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 4.0 is installed
Referenced By:
oval:org.mitre.oval:def:7802