Oval Definition:	oval:org.mitre.oval:def:13651
Revision Date: 2014-06-23 Version: 20 Title: DSA-1757-1 auth2db -- SQL injection Description: It was discovered that auth2db, an IDS logger, log viewer and alert generator, is prone to a SQL injection vulnerability, when used with multibyte character encodings. For the stable distribution, this problem has been fixed in version 0.2.5-2+dfsg-1+lenny1. The oldstable distribution doesn’t contain auth2db. For the testing distribution, this problem will be fixed soon. For the unstable distribution, this problem has been fixed in version 0.2.5-2+dfsg-1.1. We recommend that you upgrade your auth2db packages. Family: unix Class: patch Status: ACCEPTED Reference(s): DSA-1757-1 Platform(s): Debian GNU/Linux 5.0 Product(s): auth2db Definition Synopsis Debian GNU/Linux 5.0 is installed AND Installed architecture is all AND Packages section auth2db-frontend DPKG is earlier than 0.2.5-2+dfsg-1+lenny1 OR auth2db DPKG is earlier than 0.2.5-2+dfsg-1+lenny1 OR auth2db-common DPKG is earlier than 0.2.5-2+dfsg-1+lenny1 OR auth2db-filters DPKG is earlier than 0.2.5-2+dfsg-1+lenny1
BACK