oval:org.mitre.oval:def:22668

Definition Id: oval:org.mitre.oval:def:22668

Oval ID:	oval:org.mitre.oval:def:22668
Title:	ELSA-2010:0003: gd security update (Moderate)
Description:	The _gdGetColors function in gd_gd.c in PHP 5.2.11 and 5.3.x before 5.3.1, and the GD Graphics Library 2.x, does not properly verify a certain colorsTotal structure member, which might allow remote attackers to conduct buffer overflow or buffer over-read attacks via a crafted GD file, a different vulnerability than CVE-2009-3293. NOTE: some of these details are obtained from third party information.
Family:	unix	Class:	patch
Reference(s):	ELSA-2010:0003-01 CVE-2009-3546	Version:	6
Platform(s):	Oracle Linux 5	Product(s):	gd
Definition Synopsis:
Oracle Linux 5.x rpm test gd-devel is earlier than 0:2.0.33-9.4.el5_4.2 AND gd-progs is earlier than 0:2.0.33-9.4.el5_4.2 AND gd is earlier than 0:2.0.33-9.4.el5_4.2

Definition Id: oval:org.mitre.oval:def:15459

Oval ID:	oval:org.mitre.oval:def:15459
Title:	Oracle Linux 5.x
Description:	The operating system installed on the system is Oracle Linux 5.x
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:oracle:linux:5	Version:	7
Platform(s):	Oracle Linux 5	Product(s):
Definition Synopsis:
the installed operating system is part of the Unix family AND Oracle Linux 5.x is installed
Referenced By:
oval:org.mitre.oval:def:22668