OVAL Reference oval:com.ubuntu.precise:def:20145044000

Oval Definition:

oval:com.ubuntu.precise:def:20145044000

Revision Date:	2014-07-23	Version:	1
Title:	CVE-2014-5044 on Ubuntu 12.04 LTS (precise) - low.
Description:	Array memory allocations could cause an integer overflow and thus memory overflow issues at runtime.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2014-5044
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND Package Information NOT While related to the CVE in some way, the 'gcc-3.3' package in precise is not affected (note: 'provides libstdc++5 only'). OR The 'gcc-4.4' package in precise is affected and needs fixing. OR The 'gcc-4.4-armel-cross' package in precise is affected and needs fixing. OR The 'gcc-4.4-armhf-cross' package in precise is affected and needs fixing. OR The 'gcc-4.5' package in precise is affected and needs fixing. OR The 'gcc-4.5-armel-cross' package in precise is affected and needs fixing. OR The 'gcc-4.5-armhf-cross' package in precise is affected and needs fixing. OR The 'gcc-4.6' package in precise is affected and needs fixing. OR The 'gcc-4.6-armel-cross' package in precise is affected and needs fixing. OR The 'gcc-4.6-armhf-cross' package in precise is affected and needs fixing. OR NOT While related to the CVE in some way, the 'gcc-avr' package in precise is not affected (note: 'provides C/C++ runtimes only'). OR NOT While related to the CVE in some way, the 'gcc-defaults' package in precise is not affected. OR NOT While related to the CVE in some way, the 'gcc-defaults-armel-cross' package in precise is not affected. OR NOT While related to the CVE in some way, the 'gcc-defaults-armhf-cross' package in precise is not affected. OR NOT While related to the CVE in some way, the 'gcc-h8300-hms' package in precise is not affected (note: 'provides C/C++ runtimes only'). OR NOT While related to the CVE in some way, the 'gcc-m68hc1x' package in precise is not affected (note: 'provides C runtime only'). OR The 'gcc-mingw-w64' package in precise is affected and needs fixing. OR NOT While related to the CVE in some way, the 'gcc-msp430' package in precise is not affected (note: 'provides C/C++ runtimes only'). OR NOT While related to the CVE in some way, the 'gcc-opt' package in precise is not affected. OR The 'gcc-snapshot' package in precise is affected and needs fixing. OR NOT While related to the CVE in some way, the 'gccgo-4.7' package in precise is not affected.

BACK