Oval Definition:
oval:org.cisecurity:def:81
Revision Date
:
2016-02-08
Version
:
2
Title
:
DSA-3366-1 -- rpcbind -- security update
Description
:
A remotely triggerable use-after-free vulnerability was found in rpcbind, a server that converts RPC program numbers into universal addresses. A remote attacker can take advantage of this flaw to mount a denial of service (rpcbind crash).
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CVE-2015-7236
DSA-3366-1
Platform(s)
:
Debian 8
Debian GNU/kFreeBSD 7.0
Debian GNU/Linux 7.0
Product(s)
:
rpcbind
Definition Synopsis
Debian 7
Debian 7 is installed
AND
GNU/Linux or GNU/kFreeBSD kernel
Debian GNU/Linux is installed
OR
Debian GNU/kFreeBSD is installed
AND
rpcbind is earlier than 0:0.2.0-8+deb7u1
OR
Debian 8
Debian 8 is installed
AND
rpcbind is earlier than 0:0.2.1-6+deb8u1
BACK