Oval Definition:
oval:org.mitre.oval:def:6777
Revision Date
:
2014-06-23
Version
:
19
Title
:
DSA-1971 libthai -- integer overflow
Description
:
Tim Starling discovered that libthai, a set of Thai language support routines, is vulnerable of integer/heap overflow. This vulnerability could allow an attacker to run arbitrary code by sending a very long string.
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CVE-2009-4012
DSA-1971
Platform(s)
:
Debian GNU/Linux 4.0
Debian GNU/Linux 5.0
Product(s)
:
libthai
Definition Synopsis
Release section
Debian GNU/Linux 5.0 is installed
AND
Architecture section
Architecture independent section
Installed architecture is all
AND
Packages section
libthai-doc is earlier than 0.1.9-4+lenny1
OR
libthai-data is earlier than 0.1.9-4+lenny1
OR
Architecture dependent section
Supported architectures section
Installed architecture is s390
OR
Installed architecture is amd64
OR
Installed architecture is sparc
OR
Installed architecture is powerpc
OR
Installed architecture is i386
OR
Installed architecture is armel
OR
Installed architecture is mips
OR
Installed architecture is ia64
OR
Installed architecture is alpha
OR
Installed architecture is mipsel
OR
Installed architecture is hppa
AND
Packages section
libthai0 is earlier than 0.1.9-4+lenny1
OR
libthai-dev is earlier than 0.1.9-4+lenny1
OR
Release section
Debian GNU/Linux 4.0 is installed.
AND
Architecture section
Architecture independent section
Installed architecture is all
AND
libthai-doc is earlier than 0.1.6-1+etch1
OR
Architecture dependent section
Supported architectures section
Installed architecture is s390
OR
Installed architecture is amd64
OR
Installed architecture is sparc
OR
Installed architecture is powerpc
OR
Installed architecture is i386
OR
Installed architecture is mips
OR
Installed architecture is ia64
OR
Installed architecture is alpha
OR
Installed architecture is mipsel
OR
Installed architecture is hppa
AND
Packages section
libthai0 is earlier than 0.1.6-1+etch1
OR
libthai-dev is earlier than 0.1.6-1+etch1
BACK