OVAL Reference oval:org.mitre.oval:def:21344

Oval Definition:

oval:org.mitre.oval:def:21344

Revision Date:	2014-02-24	Version:	35
Title:	RHSA-2012:0841: abrt, libreport, btparser, and python-meh security and bug fix update (Low)
Description:	The C handler plug-in in Automatic Bug Reporting Tool (ABRT), possibly 2.0.8 and earlier, does not properly set the group (GID) permissions on core dump files for setuid programs when the sysctl fs.suid_dumpable option is set to 2, which allows local users to obtain sensitive information.
Family:	unix	Class:	patch
Status:	ACCEPTED	Reference(s):	CESA-2012:0841 CVE-2011-4088 CVE-2012-1106 RHSA-2012:0841-04
Platform(s):	CentOS Linux 6 Red Hat Enterprise Linux 6	Product(s):	abrt btparser libreport python-meh
Definition Synopsis
Redhat 6 and Centos 6 section Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 OR The operating system installed on the system is CentOS Linux 6.x AND Packages section python-meh is earlier than 0:0.12.1-3.el6 OR btparser-python is earlier than 0:0.16-3.el6 OR btparser is earlier than 0:0.16-3.el6 OR btparser-devel is earlier than 0:0.16-3.el6 OR Centos 6 section The operating system installed on the system is CentOS Linux 6.x AND Packages section abrt-desktop is earlier than 0:2.0.8-6.el6.centos OR abrt-gui is earlier than 0:2.0.8-6.el6.centos OR abrt is earlier than 0:2.0.8-6.el6.centos OR abrt-devel is earlier than 0:2.0.8-6.el6.centos OR abrt-addon-kerneloops is earlier than 0:2.0.8-6.el6.centos OR abrt-tui is earlier than 0:2.0.8-6.el6.centos OR abrt-addon-vmcore is earlier than 0:2.0.8-6.el6.centos OR abrt-addon-ccpp is earlier than 0:2.0.8-6.el6.centos OR abrt-addon-python is earlier than 0:2.0.8-6.el6.centos OR abrt-libs is earlier than 0:2.0.8-6.el6.centos OR abrt-cli is earlier than 0:2.0.8-6.el6.centos OR libreport-plugin-mailx is earlier than 0:2.0.9-5.el6.centos OR libreport-plugin-rhtsupport is earlier than 0:2.0.9-5.el6.centos OR libreport-gtk-devel is earlier than 0:2.0.9-5.el6.centos OR libreport-python is earlier than 0:2.0.9-5.el6.centos OR libreport-cli is earlier than 0:2.0.9-5.el6.centos OR libreport is earlier than 0:2.0.9-5.el6.centos OR libreport-plugin-reportuploader is earlier than 0:2.0.9-5.el6.centos OR libreport-newt is earlier than 0:2.0.9-5.el6.centos OR libreport-gtk is earlier than 0:2.0.9-5.el6.centos OR libreport-plugin-kerneloops is earlier than 0:2.0.9-5.el6.centos OR libreport-devel is earlier than 0:2.0.9-5.el6.centos OR libreport-plugin-logger is earlier than 0:2.0.9-5.el6.centos OR libreport-plugin-bugzilla is earlier than 0:2.0.9-5.el6.centos OR Redhat 6 section The operating system installed on the system is Red Hat Enterprise Linux 6 AND Packages section abrt-desktop is earlier than 0:2.0.8-6.el6 OR abrt-gui is earlier than 0:2.0.8-6.el6 OR abrt is earlier than 0:2.0.8-6.el6 OR abrt-devel is earlier than 0:2.0.8-6.el6 OR abrt-addon-kerneloops is earlier than 0:2.0.8-6.el6 OR abrt-tui is earlier than 0:2.0.8-6.el6 OR abrt-addon-vmcore is earlier than 0:2.0.8-6.el6 OR abrt-addon-ccpp is earlier than 0:2.0.8-6.el6 OR abrt-addon-python is earlier than 0:2.0.8-6.el6 OR abrt-libs is earlier than 0:2.0.8-6.el6 OR abrt-cli is earlier than 0:2.0.8-6.el6 OR libreport-plugin-mailx is earlier than 0:2.0.9-5.el6 OR libreport-plugin-rhtsupport is earlier than 0:2.0.9-5.el6 OR libreport-gtk-devel is earlier than 0:2.0.9-5.el6 OR libreport-python is earlier than 0:2.0.9-5.el6 OR libreport-cli is earlier than 0:2.0.9-5.el6 OR libreport is earlier than 0:2.0.9-5.el6 OR libreport-plugin-reportuploader is earlier than 0:2.0.9-5.el6 OR libreport-newt is earlier than 0:2.0.9-5.el6 OR libreport-gtk is earlier than 0:2.0.9-5.el6 OR libreport-plugin-kerneloops is earlier than 0:2.0.9-5.el6 OR libreport-devel is earlier than 0:2.0.9-5.el6 OR libreport-plugin-logger is earlier than 0:2.0.9-5.el6 OR libreport-plugin-bugzilla is earlier than 0:2.0.9-5.el6

BACK