Oval Definition:oval:org.mitre.oval:def:23176
Revision Date:2014-05-26Version:20
Title:ELSA-2011:0025: gcc security and bug fix update (Low)
Description:Absolute path traversal vulnerability in the extract_jar function in jartool.c in FastJar 0.98 allows remote attackers to create or overwrite arbitrary files via a full pathname for a file within a .jar archive, a related issue to CVE-2010-0831.NOTE: this vulnerability exists because of an incomplete fix for CVE-2006-3619.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2010-0831
CVE-2010-2322
ELSA-2011:0025-01
Platform(s):Oracle Linux 5
Product(s):gcc
Definition Synopsis
  • Oracle Linux 5.x
  • AND rpm test
  • libgcj-src is earlier than 0:4.1.2-50.el5
  • OR gcc-objc++ is earlier than 0:4.1.2-50.el5
  • OR libgfortran is earlier than 0:4.1.2-50.el5
  • OR libmudflap is earlier than 0:4.1.2-50.el5
  • OR gcc-gfortran is earlier than 0:4.1.2-50.el5
  • OR libgcc is earlier than 0:4.1.2-50.el5
  • OR libgcj-devel is earlier than 0:4.1.2-50.el5
  • OR cpp is earlier than 0:4.1.2-50.el5
  • OR gcc-gnat is earlier than 0:4.1.2-50.el5
  • OR libstdc++ is earlier than 0:4.1.2-50.el5
  • OR libmudflap-devel is earlier than 0:4.1.2-50.el5
  • OR gcc-objc is earlier than 0:4.1.2-50.el5
  • OR gcc-c++ is earlier than 0:4.1.2-50.el5
  • OR gcc is earlier than 0:4.1.2-50.el5
  • OR gcc-java is earlier than 0:4.1.2-50.el5
  • OR libgnat is earlier than 0:4.1.2-50.el5
  • OR libgcj is earlier than 0:4.1.2-50.el5
  • OR libstdc++-devel is earlier than 0:4.1.2-50.el5
  • OR libobjc is earlier than 0:4.1.2-50.el5
    • BACK