Oval Definition:
oval:org.mitre.oval:def:8038
Revision Date
:
2014-06-23
Version
:
18
Title
:
DSA-1763 openssl -- programming error
Description
:
It was discovered that insufficient length validations in the ASN.1 handling of the OpenSSL crypto library may lead to denial of service when processing a manipulated certificate.
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CVE-2009-0590
DSA-1763
Platform(s)
:
Debian GNU/Linux 4.0
Debian GNU/Linux 5.0
Product(s)
:
openssl
Definition Synopsis
Release section
Debian GNU/Linux 5.0 is installed
AND
Supported architectures section
Installed architecture is s390
OR
Installed architecture is amd64
OR
Installed architecture is sparc
OR
Installed architecture is arm
OR
Installed architecture is i386
OR
Installed architecture is armel
OR
Installed architecture is mips
OR
Installed architecture is ia64
OR
Installed architecture is alpha
OR
Installed architecture is powerpc
OR
Installed architecture is mipsel
OR
Installed architecture is hppa
AND
Packages section
libssl-dev is earlier than 0.9.8g-15+lenny1
OR
libssl0.9.8-dbg is earlier than 0.9.8g-15+lenny1
OR
libssl0.9.8 is earlier than 0.9.8g-15+lenny1
OR
openssl is earlier than 0.9.8g-15+lenny1
OR
Release section
Debian GNU/Linux 4.0 is installed.
AND
Packages section
libssl0.9.7-dbg is earlier than 0.9.7k-3.1etch3
OR
libssl-dev is earlier than 0.9.8c-4etch5
OR
libssl0.9.8-dbg is earlier than 0.9.8c-4etch5
OR
openssl is earlier than 0.9.8c-4etch5
OR
libssl0.9.8 is earlier than 0.9.8c-4etch5
OR
libssl0.9.7 is earlier than 0.9.7k-3.1etch3
BACK