Oval Definition:	oval:org.cisecurity:def:48
Revision Date: 2016-02-08 Version: 2 Title: DSA-3192-1 -- checkpw -- security update Description: Hiroya Ito of GMO Pepabo, Inc. reported that checkpw, a password authentication program, has a flaw in processing account names which contain double dashes. A remote attacker can use this flaw to cause a denial of service (infinite loop). Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2015-0885 DSA-3192-1 Platform(s): Debian GNU/kFreeBSD 7.0 Debian GNU/Linux 7.0 Product(s): checkpw Definition Synopsis Debian 7 is installed AND GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed OR Debian GNU/kFreeBSD is installed AND checkpw is earlier than 0:1.02-1+deb7u1
BACK