oval:org.mitre.oval:def:13533

Definition Id: oval:org.mitre.oval:def:13533

Oval ID:	oval:org.mitre.oval:def:13533
Title:	DSA-2058-1 glibc, eglibc -- multiple
Description:	Several vulnerabilities have been discovered in the GNU C Library and its derivatives. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2008-1391, CVE-2009-4880, CVE-2009-4881 Maksymilian Arciemowicz discovered that the GNU C library did not correctly handle integer overflows in the strfmon family of functions. If a user or automated system were tricked into processing a specially crafted format string, a remote attacker could crash applications, leading to a denial of service. CVE-2010-0296 Jeff Layton and Dan Rosenberg discovered that the GNU C library did not correctly handle newlines in the mntent family of functions. If a local attacker were able to inject newlines into a mount entry through other vulnerable mount helpers, they could disrupt the system or possibly gain root privileges. CVE-2010-0830 Dan Rosenberg discovered that the GNU C library did not correctly validate certain ELF program headers. If a user or automated system were tricked into verifying a specially crafted ELF program, a remote attacker could execute arbitrary code with user privileges. For the stable distribution, these problems have been fixed in version 2.7-18lenny4 of the glibc package. For the testing distribution, these problems will be fixed soon. For the unstable distribution, these problems have been fixed in version 2.1.11-1 of the eglibc package. We recommend that you upgrade your glibc or eglibc packages.
Family:	unix	Class:	patch
Reference(s):	DSA-2058-1 CVE-2008-1391 CVE-2009-4880 CVE-2009-4881 CVE-2010-0296 CVE-2010-0830	Version:	5
Platform(s):	Debian GNU/Linux 5.0	Product(s):	glibc eglibc
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Architecture section Architecture independet section Installed architecture is all AND Packages section glibc-doc DPKG is earlier than 2.7-18lenny4 AND glibc-source DPKG is earlier than 2.7-18lenny4 AND locales DPKG is earlier than 2.7-18lenny4 OR Architecture depended section Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is mips AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section libc6-prof DPKG is earlier than 2.7-18lenny4 AND nscd DPKG is earlier than 2.7-18lenny4 AND libc6-dev DPKG is earlier than 2.7-18lenny4 AND libc6-pic DPKG is earlier than 2.7-18lenny4 AND libc6 DPKG is earlier than 2.7-18lenny4 AND locales-all DPKG is earlier than 2.7-18lenny4 AND libc6-dbg DPKG is earlier than 2.7-18lenny4 OR Architecture depended section Installed architecture is s390 AND Packages section libc6-dev-s390x DPKG is earlier than 2.7-18lenny4 AND libc6-s390x DPKG is earlier than 2.7-18lenny4 OR Supported platform section Installed architecture is mipsel AND Packages section libc6-mips64 DPKG is earlier than 2.7-18lenny4 AND libc6-dev-mips64 DPKG is earlier than 2.7-18lenny4 AND libc6-dev-mipsn32 DPKG is earlier than 2.7-18lenny4 AND libc6-mipsn32 DPKG is earlier than 2.7-18lenny4

Definition Id: oval:org.mitre.oval:def:6513

Oval ID:	oval:org.mitre.oval:def:6513
Title:	Debian GNU/Linux 5.0 is installed
Description:	Debian GNU/Linux 5.0 (lenny) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:5.0	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 5.0 is installed
Referenced By:
oval:org.mitre.oval:def:13533

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0297s

Facebook rss twitter linkedin mail