OVAL Reference oval:org.cisecurity:def:1276

Oval Definition:

oval:org.cisecurity:def:1276

Revision Date:	2016-11-25	Version:	6
Title:	DSA-3682-1 -- c-ares -- security update
Description:	Gzob Qq discovered that the query-building functions in c-ares, an asynchronous DNS request library would not correctly process crafted query names, resulting in a heap buffer overflow and potentially leading to arbitrary code execution.
Family:	unix	Class:	patch
Status:	ACCEPTED	Reference(s):	CVE-2016-5180 DSA-3682-1
Platform(s):	Debian 8	Product(s):	c-ares
Definition Synopsis
Debian 8 is installed AND c-ares is earlier than 0:1.10.0-2+deb8u1