Oval Definition:oval:org.mitre.oval:def:21917
Revision Date:2014-02-24Version:30
Title:RHSA-2011:0025: gcc security and bug fix update (Low)
Description:Absolute path traversal vulnerability in the extract_jar function in jartool.c in FastJar 0.98 allows remote attackers to create or overwrite arbitrary files via a full pathname for a file within a .jar archive, a related issue to CVE-2010-0831. NOTE: this vulnerability exists because of an incomplete fix for CVE-2006-3619.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2010-0831
CVE-2010-2322
RHSA-2011:0025-01
Platform(s):Red Hat Enterprise Linux 5
Product(s):gcc
Definition Synopsis
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • AND Packages section
  • libgcj-src is earlier than 0:4.1.2-50.el5
  • OR gcc-objc++ is earlier than 0:4.1.2-50.el5
  • OR libgfortran is earlier than 0:4.1.2-50.el5
  • OR libmudflap is earlier than 0:4.1.2-50.el5
  • OR gcc-gfortran is earlier than 0:4.1.2-50.el5
  • OR libgcc is earlier than 0:4.1.2-50.el5
  • OR libgcj-devel is earlier than 0:4.1.2-50.el5
  • OR cpp is earlier than 0:4.1.2-50.el5
  • OR gcc-gnat is earlier than 0:4.1.2-50.el5
  • OR libstdc++ is earlier than 0:4.1.2-50.el5
  • OR libmudflap-devel is earlier than 0:4.1.2-50.el5
  • OR gcc-objc is earlier than 0:4.1.2-50.el5
  • OR gcc-c++ is earlier than 0:4.1.2-50.el5
  • OR gcc is earlier than 0:4.1.2-50.el5
  • OR gcc-java is earlier than 0:4.1.2-50.el5
  • OR libgnat is earlier than 0:4.1.2-50.el5
  • OR libgcj is earlier than 0:4.1.2-50.el5
  • OR libstdc++-devel is earlier than 0:4.1.2-50.el5
  • OR libobjc is earlier than 0:4.1.2-50.el5
    • BACK