Oval Definition:	oval:org.mitre.oval:def:21353
Revision Date: 2014-02-24 Version: 10 Title: RHSA-2012:0397: glibc security update (Moderate) Description: Integer overflow in the vfprintf function in stdio-common/vfprintf.c in glibc 2.14 and other versions allows context-dependent attackers to bypass the FORTIFY_SOURCE protection mechanism, conduct format string attacks, and write to arbitrary memory via a large number of arguments. Family: unix Class: patch Status: ACCEPTED Reference(s): CESA-2012:0397 CVE-2012-0864 RHSA-2012:0397-01 Platform(s): CentOS Linux 5 Red Hat Enterprise Linux 5 Product(s): glibc Definition Synopsis Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 OR The operating system installed on the system is CentOS Linux 5.x AND Packages section nscd is earlier than 0:2.5-81.el5_8.1 OR glibc is earlier than 0:2.5-81.el5_8.1 OR glibc-devel is earlier than 0:2.5-81.el5_8.1 OR glibc-common is earlier than 0:2.5-81.el5_8.1 OR glibc-headers is earlier than 0:2.5-81.el5_8.1 OR glibc-utils is earlier than 0:2.5-81.el5_8.1
BACK