Oval Definition:	oval:org.mitre.oval:def:22150
Revision Date: 2014-02-24 Version: 35 Title: RHSA-2011:1324: qt4 security update (Moderate) Description: Heap-based buffer overflow in the Lookup_MarkMarkPos function in the HarfBuzz module (harfbuzz-gpos.c), as used by Qt before 4.7.4 and Pango, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted font file. Family: unix Class: patch Status: ACCEPTED Reference(s): CESA-2011:1324 CVE-2007-0242 CVE-2011-3193 RHSA-2011:1324-01 Platform(s): CentOS Linux 5 Red Hat Enterprise Linux 5 Product(s): qt4 Definition Synopsis Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 OR The operating system installed on the system is CentOS Linux 5.x AND Packages section qt4-odbc is earlier than 0:4.2.1-1.el5_7.1 OR qt4-devel is earlier than 0:4.2.1-1.el5_7.1 OR qt4-postgresql is earlier than 0:4.2.1-1.el5_7.1 OR qt4 is earlier than 0:4.2.1-1.el5_7.1 OR qt4-sqlite is earlier than 0:4.2.1-1.el5_7.1 OR qt4-mysql is earlier than 0:4.2.1-1.el5_7.1 OR qt4-doc is earlier than 0:4.2.1-1.el5_7.1
BACK