Oval Definition:	oval:com.ubuntu.precise:def:20112483000
Revision Date: 2011-08-25 Version: 1 Title: CVE-2011-2483 on Ubuntu 12.04 LTS (precise) - medium. Description: crypt_blowfish before 1.1, as used in PHP before 5.3.7 on certain platforms, PostgreSQL before 8.4.9, and other products, does not properly handle 8-bit characters, which makes it easier for context-dependent attackers to determine a cleartext password by leveraging knowledge of a password hash. Family: unix Class: vulnerability Status: Reference(s): CVE-2011-2483 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information NOT While related to the CVE in some way, the 'john' package in precise is not affected (note: '1.7.8-1'). OR NOT While related to the CVE in some way, the 'libcrypt-eksblowfish-perl' package in precise is not affected. OR NOT While related to the CVE in some way, the 'php5' package in precise is not affected (note: '5.3.6-13ubuntu2'). OR NOT While related to the CVE in some way, the 'postgresql-8.4' package in precise is not affected (note: '8.4.11-1'). OR NOT While related to the CVE in some way, the 'postgresql-9.1' package in precise is not affected (note: '9.1~rc1-2').
BACK