Oval Definition:	oval:com.redhat.rhsa:def:20120321
Revision Date: 2012-02-21 Version: 635 Title: RHSA-2012:0321: cvs security update (Moderate) Description: Concurrent Version System (CVS) is a version control system that can record the history of your files. A heap-based buffer overflow flaw was found in the way the CVS client handled responses from HTTP proxies. A malicious HTTP proxy could use this flaw to cause the CVS client to crash or, possibly, execute arbitrary code with the privileges of the user running the CVS client. (CVE-2012-0804) All users of cvs are advised to upgrade to these updated packages, which contain a patch to correct this issue. Family: unix Class: patch Status: Reference(s): CVE-2012-0804 CVE-2012-0804 RHSA-2012:0321 RHSA-2012:0321-01 RHSA-2012:0321-01 Platform(s): Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 Product(s): Definition Synopsis Red Hat Enterprise Linux must be installed OR Package Information Red Hat Enterprise Linux 6 is installed AND cvs is earlier than 0:1.11.23-11.el6_2.1 AND cvs is signed with Red Hat redhatrelease2 key OR Package Information Red Hat Enterprise Linux 5 is installed AND cvs is earlier than 0:1.11.22-11.el5_8.1 AND cvs is signed with Red Hat redhatrelease2 key cvs-inetd is earlier than 0:1.11.22-11.el5_8.1 AND cvs-inetd is signed with Red Hat redhatrelease2 key Definition Synopsis Release Information Red Hat Enterprise Linux 5 is installed AND cvs-inetd is earlier than 0:1.11.22-11.el5_8.1 AND cvs-inetd is signed with Red Hat redhatrelease key cvs is earlier than 0:1.11.22-11.el5_8.1 AND cvs is signed with Red Hat redhatrelease key OR Package Information cvs is earlier than 0:1.11.23-11.el6_2.1 AND cvs is signed with Red Hat redhatrelease2 key AND Red Hat Enterprise Linux 6 Client is installed OR Red Hat Enterprise Linux 6 Server is installed OR Red Hat Enterprise Linux 6 Workstation is installed OR Red Hat Enterprise Linux 6 ComputeNode is installed
BACK