oval:org.mitre.oval:def:22798

Definition Id: oval:org.mitre.oval:def:22798

Oval ID:	oval:org.mitre.oval:def:22798
Title:	ELSA-2009:1204: apr and apr-util security update (Moderate)
Description:	Multiple integer overflows in the Apache Portable Runtime (APR) library and the Apache Portable Utility library (aka APR-util) 0.9.x and 1.3.x allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors that trigger crafted calls to the (1) allocator_alloc or (2) apr_palloc function in memory/unix/apr_pools.c in APR; or crafted calls to the (3) apr_rmm_malloc, (4) apr_rmm_calloc, or (5) apr_rmm_realloc function in misc/apr_rmm.c in APR-util; leading to buffer overflows. NOTE: some of these details are obtained from third party information.
Family:	unix	Class:	patch
Reference(s):	ELSA-2009:1204-01 CVE-2009-2412	Version:	6
Platform(s):	Oracle Linux 5	Product(s):	apr apr-util
Definition Synopsis:
Oracle Linux 5.x rpm test apr-devel is earlier than 0:1.2.7-11.el5_3.1 AND apr is earlier than 0:1.2.7-11.el5_3.1 AND apr-docs is earlier than 0:1.2.7-11.el5_3.1 AND apr-util is earlier than 0:1.2.7-7.el5_3.2 AND apr-util-devel is earlier than 0:1.2.7-7.el5_3.2 AND apr-util-docs is earlier than 0:1.2.7-7.el5_3.2

Definition Id: oval:org.mitre.oval:def:15459

Oval ID:	oval:org.mitre.oval:def:15459
Title:	Oracle Linux 5.x
Description:	The operating system installed on the system is Oracle Linux 5.x
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:oracle:linux:5	Version:	7
Platform(s):	Oracle Linux 5	Product(s):
Definition Synopsis:
the installed operating system is part of the Unix family AND Oracle Linux 5.x is installed
Referenced By:
oval:org.mitre.oval:def:22798