Oval Definition:	oval:com.redhat.rhsa:def:20110337
Revision Date: 2011-03-09 Version: 636 Title: RHSA-2011:0337: vsftpd security update (Important) Description: vsftpd (Very Secure File Transfer Protocol (FTP) daemon) is a secure FTP server for Linux, UNIX, and similar operating systems. A flaw was discovered in the way vsftpd processed file name patterns. An FTP user could use this flaw to cause the vsftpd process to use an excessive amount of CPU time, when processing a request with a specially-crafted file name pattern. (CVE-2011-0762) All vsftpd users should upgrade to this updated package, which contains a backported patch to correct this issue. The vsftpd daemon must be restarted for this update to take effect. Family: unix Class: patch Status: Reference(s): CVE-2011-0762 CVE-2011-0762 RHSA-2011:0337 RHSA-2011:0337-01 RHSA-2011:0337-01 Platform(s): Red Hat Enterprise Linux 4 Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 Product(s): Definition Synopsis Red Hat Enterprise Linux must be installed OR Package Information Red Hat Enterprise Linux 4 is installed AND vsftpd is earlier than 0:2.0.1-9.el4 AND vsftpd is signed with Red Hat redhatrelease2 key OR Package Information Red Hat Enterprise Linux 6 is installed AND vsftpd is earlier than 0:2.2.2-6.el6_0.1 AND vsftpd is signed with Red Hat redhatrelease2 key OR Package Information Red Hat Enterprise Linux 5 is installed AND vsftpd is earlier than 0:2.0.5-16.el5_6.1 AND vsftpd is signed with Red Hat redhatrelease2 key Definition Synopsis Release Information vsftpd is earlier than 0:2.2.2-6.el6_0.1 AND vsftpd is signed with Red Hat redhatrelease2 key AND Red Hat Enterprise Linux 6 Client is installed OR Red Hat Enterprise Linux 6 Server is installed OR Red Hat Enterprise Linux 6 Workstation is installed OR Red Hat Enterprise Linux 6 ComputeNode is installed OR Package Information Red Hat Enterprise Linux 4 is installed AND vsftpd is earlier than 0:2.0.1-9.el4 AND vsftpd is signed with Red Hat master key
BACK