Oval Definition:
oval:org.cisecurity:def:553
Revision Date
:
2016-07-01
Version
:
6
Title
:
DSA-3540-1 -- lhasa -- security update
Description
:
Marcin Noga discovered an integer underflow in Lhasa, a lzh archive decompressor, which might result in the execution of arbitrary code if a malformed archive is processed.
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CVE-2016-2347
DSA-3540-1
Platform(s)
:
Debian 8
Debian GNU/kFreeBSD 7
Debian GNU/Linux 7
Product(s)
:
lhasa
Definition Synopsis
Debian 7
Debian 7 is installed
AND
GNU/Linux or GNU/kFreeBSD kernel
Debian GNU/Linux is installed
OR
Debian GNU/kFreeBSD is installed
AND
lhasa is earlier than 0:0.0.7-2+deb7u1
OR
Debian 8
Debian 8 is installed
AND
lhasa is earlier than 0:0.2.0+git3fe46-1+deb8u1
BACK