Oval Definition:oval:org.mitre.oval:def:13120
Revision Date:2014-06-30Version:21
Title:USN-890-5 -- xmlrpc-c vulnerabilities
Description:USN-890-1 fixed vulnerabilities in Expat. This update provides the corresponding updates for XML-RPC for C and C++. Original advisory details: Jukka Taimisto, Tero Rontti and Rauli Kaksonen discovered that Expat did not properly process malformed XML. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash. It was discovered that Expat did not properly process malformed UTF-8 sequences. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service via application crash
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2009-2625
CVE-2009-3560
CVE-2009-3720
USN-890-5
USN-890-5
Platform(s):Ubuntu 9.10
Product(s):xmlrpc-c
Definition Synopsis
  • Ubuntu 9.10 is installed
  • AND Supported architectures section
  • Installed architecture is sparc
  • OR Installed architecture is i386
  • OR Installed architecture is amd64
  • OR Installed architecture is lpia
  • OR Installed architecture is powerpc
  • AND Packages section
  • libxmlrpc-c3 DPKG is earlier than 1.06.27-1ubuntu6.1
  • OR libxmlrpc-core-c3-dev DPKG is earlier than 1.06.27-1ubuntu6.1
  • OR xml-rpc-api2txt DPKG is earlier than 1.06.27-1ubuntu6.1
  • OR libxmlrpc-c3-dev DPKG is earlier than 1.06.27-1ubuntu6.1
  • OR libxmlrpc-core-c3 DPKG is earlier than 1.06.27-1ubuntu6.1
  • OR xml-rpc-api2cpp DPKG is earlier than 1.06.27-1ubuntu6.1
    • BACK