oval:org.mitre.oval:def:26817

Definition Id: oval:org.mitre.oval:def:26817

Oval ID:	oval:org.mitre.oval:def:26817
Title:	SUSE-SU-2014:1128-1 -- Security update for glibc
Description:	This glibc update fixes a critical privilege escalation problem and the following security and non-security issues: * bnc#892073: An off-by-one error leading to a heap-based buffer overflow was found in __gconv_translit_find(). An exploit that targets the problem is publicly available. (CVE-2014-5119) * bnc#882600: Copy filename argument in posix_spawn_file_actions_addopen. (CVE-2014-4043) * bnc#860501: Use O_LARGEFILE for utmp file. * bnc#842291: Fix typo in glibc-2.5-dlopen-lookup-race.diff. * bnc#839870: Fix integer overflows in malloc. (CVE-2013-4332) * bnc#834594: Fix readdir_r with long file names. (CVE-2013-4237) * bnc#824639: Drop lock before calling malloc_printerr. * bnc#801246: Fix buffer overrun in regexp matcher. (CVE-2013-0242) * bnc#779320: Fix buffer overflow in strcoll. (CVE-2012-4412) * bnc#894556 / bnc#894553: Fix crashes on invalid input in IBM gconv modules. (CVE-2014-6040, CVE-2012-6656, bnc#894553, bnc#894556, BZ#17325, BZ#14134) Security Issues: * CVE-2014-5119 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5119> * CVE-2014-4043 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4043> * CVE-2013-4332 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4332> * CVE-2013-4237 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4237> * CVE-2013-0242 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0242> * CVE-2012-4412 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4412>
Family:	unix	Class:	patch
Reference(s):	SUSE-SU-2014:1128-1 CVE-2014-5119 CVE-2014-4043 CVE-2013-4332 CVE-2013-4237 CVE-2013-0242 CVE-2012-4412 CVE-2014-6040 CVE-2012-6656	Version:	3
Platform(s):	SUSE Linux Enterprise Server 10	Product(s):	glibc
Definition Synopsis:
SUSE Linux Enterprise Server 10 is installed Packages match section glibc RPM is earlier than 0:2.4-31.77.112.1 AND glibc-devel RPM is earlier than 0:2.4-31.77.112.1 AND glibc-html RPM is earlier than 0:2.4-31.77.112.1 AND glibc-i18ndata RPM is earlier than 0:2.4-31.77.112.1 AND glibc-info RPM is earlier than 0:2.4-31.77.112.1 AND glibc-locale RPM is earlier than 0:2.4-31.77.112.1 AND glibc-profile RPM is earlier than 0:2.4-31.77.112.1 AND nscd RPM is earlier than 0:2.4-31.77.112.1 AND glibc-32bit RPM is earlier than 0:2.4-31.77.112.1 AND glibc-devel-32bit RPM is earlier than 0:2.4-31.77.112.1 AND glibc-locale-32bit RPM is earlier than 0:2.4-31.77.112.1 AND glibc-profile-32bit RPM is earlier than 0:2.4-31.77.112.1

Definition Id: oval:org.mitre.oval:def:1368

Oval ID:	oval:org.mitre.oval:def:1368
Title:	SUSE Linux Enterprise Server 10 is installed
Description:	SUSE Linux Enterprise Server 10 is installed.
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:novell:suse_linux:10::server	Version:	6
Platform(s):	SUSE Linux Enterprise Server 10	Product(s):
Definition Synopsis:
SUSE Linux Enterprise Server 10 is installed
Referenced By:
oval:org.mitre.oval:def:26817

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0323s

Facebook rss twitter linkedin mail