Oval Definition:oval:org.mitre.oval:def:13648
Revision Date:2014-06-23Version:20
Title:DSA-1747-1 glib2.0 -- integer overflow
Description:Diego Petten discovered that glib2.0, the GLib library of C routines, handles large strings insecurely via its Base64 encoding functions. This could possible lead to the execution of arbitrary code. For the stable distribution, this problem has been fixed in version 2.16.6-1+lenny1. For the oldstable distribution, this problem has been fixed in version 2.12.4-2+etch1. For the testing distribution, this problem will be fixed soon. For the unstable distribution, this problem has been fixed in version 2.20.0-1. We recommend that you upgrade your glib2.0 packages.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2008-4316
DSA-1747-1
Platform(s):Debian GNU/Linux 4.0
Debian GNU/Linux 5.0
Product(s):glib2.0
Definition Synopsis
  • Release section
  • Debian GNU/Linux 5.0 is installed
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND Packages section
  • libglib2.0-doc DPKG is earlier than 2.16.6-1+lenny1
  • OR libglib2.0-data DPKG is earlier than 2.16.6-1+lenny1
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is s390
  • OR Installed architecture is amd64
  • OR Installed architecture is sparc
  • OR Installed architecture is arm
  • OR Installed architecture is i386
  • OR Installed architecture is armel
  • OR Installed architecture is mips
  • OR Installed architecture is ia64
  • OR Installed architecture is alpha
  • OR Installed architecture is powerpc
  • OR Installed architecture is mipsel
  • OR Installed architecture is hppa
  • AND Packages section
  • libglib2.0-0 DPKG is earlier than 2.16.6-1+lenny1
  • OR libglib2.0-0-dbg DPKG is earlier than 2.16.6-1+lenny1
  • OR libgio-fam DPKG is earlier than 2.16.6-1+lenny1
  • OR libglib2.0-dev DPKG is earlier than 2.16.6-1+lenny1
  • OR Release section
  • Debian GNU/Linux 4.0 is installed.
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND Packages section
  • libglib2.0-doc DPKG is earlier than 2.12.4-2+etch1
  • OR libglib2.0-data DPKG is earlier than 2.12.4-2+etch1
  • OR libglib2.0-0 DPKG is earlier than 2.12.4-2+etch1
  • OR libglib2.0-0-dbg DPKG is earlier than 2.12.4-2+etch1
  • OR libglib2.0-dev DPKG is earlier than 2.12.4-2+etch1
    • BACK