Oval Definition:oval:com.ubuntu.precise:def:20114953000
Revision Date:2014-10-26Version:1
Title:CVE-2011-4953 on Ubuntu 12.04 LTS (precise) - high.
Description:The set_mgmt_parameters function in item.py in cobbler before 2.2.2 allows context-dependent attackers to execute arbitrary code via vectors related to the use of the yaml.load function instead of the yaml.safe_load function, as demonstrated using Puppet.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2011-4953
Platform(s):Ubuntu 12.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 12.04 LTS (precise) is installed.
  • AND The 'cobbler' package in precise was vulnerable but has been fixed (note: '2.2.2-0ubuntu1').
  • BACK