Oval Definition:oval:org.mitre.oval:def:13598
Revision Date:2014-06-23Version:21
Title:DSA-1931-1 nspr -- several
Description:Several vulnerabilities have been discovered in the NetScape Portable Runtime Library, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-1563 A programming error in the string handling code may lead to the execution of arbitrary code. CVE-2009-2463 An integer overflow in the Base64 decoding functions may lead to the execution of arbitrary code. The old stable distribution doesn’t contain nspr. For the stable distribution, these problems have been fixed in version 4.7.1-5. For the unstable distribution these problems have been fixed in version 4.8.2-1. We recommend that you upgrade your NSPR packages.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2009-0689
CVE-2009-1563
CVE-2009-2463
DSA-1931-1
Platform(s):Debian GNU/Linux 5.0
Product(s):nspr
Definition Synopsis
  • Debian GNU/Linux 5.0 is installed
  • AND Supported architectures section
  • Installed architecture is s390
  • OR Installed architecture is amd64
  • OR Installed architecture is sparc
  • OR Installed architecture is arm
  • OR Installed architecture is i386
  • OR Installed architecture is armel
  • OR Installed architecture is mips
  • OR Installed architecture is ia64
  • OR Installed architecture is alpha
  • OR Installed architecture is powerpc
  • OR Installed architecture is mipsel
  • OR Installed architecture is hppa
  • AND Packages section
  • libnspr4-dev DPKG is earlier than 4.7.1-5
  • OR libnspr4-0d-dbg DPKG is earlier than 4.7.1-5
  • OR libnspr4-0d DPKG is earlier than 4.7.1-5
    • BACK