OVAL Reference oval:org.cisecurity:def:747

Oval Definition:

oval:org.cisecurity:def:747

Revision Date:	2016-07-01	Version:	13
Title:	Multiple vulnerabilities in OpenSSL affect AIX
Description:	A double free bug was discovered when OpenSSL parses malformed DSA private keys and could lead to a DoS attack or memory corruption for applications that receive DSA private keys from untrusted sources
Family:	unix	Class:	vulnerability
Status:	ACCEPTED	Reference(s):	CVE-2016-0705
Platform(s):	IBM AIX 6.1 IBM AIX 7.1	Product(s):
Definition Synopsis
platforms IBM AIX 6.1 is installed OR IBM AIX 7.1 is installed AND filesets File Version Exists openssl.base greater than or equal 1.0.1.500 AND openssl.base less than or equal 1.0.1.515 AND NOT Interim fix IV83169m9a (vuid: 00F850C34C00040104041816) is installed OR File Version Exists openssl.base greater than or equal 0.9.8.401 AND openssl.base less than or equal 0.9.8.2506 AND NOT Interim fix IV83169m9b (vuid: 00F850C34C00040104040816) is installed OR File Version Exists openssl.base equal to 1.0.2.500 AND NOT Interim fix IV83169s9d (vuid: 00F850C34C00040105042616) is installed OR File Version Exists openssl.base greater than or equal 12.9.8.1100 AND openssl.base less than or equal 12.9.8.2506 AND NOT Interim fix IV83169m9c (vuid: 00F850C34C00040110042716) is installed