Oval Definition:oval:org.mitre.oval:def:8189
Revision Date:2014-06-23Version:18
Title:DSA-1767 multipath-tools -- insecure file permissions
Description:It was discovered that multipathd of multipath-tools, a tool-chain to manage disk multipath device maps, uses insecure permissions on its unix domain control socket which enables local attackers to issue commands to multipathd prevent access to storage devices or corrupt file system data.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2009-0115
DSA-1767
Platform(s):Debian GNU/Linux 4.0
Debian GNU/Linux 5.0
Product(s):multipath-tools
Definition Synopsis
  • Release section
  • Debian GNU/Linux 5.0 is installed
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND multipath-tools-boot is earlier than 0.4.8-14+lenny1
  • OR Architecture dependent section
  • Supported architectures section
  • Installed architecture is s390
  • OR Installed architecture is amd64
  • OR Installed architecture is sparc
  • OR Installed architecture is arm
  • OR Installed architecture is i386
  • OR Installed architecture is armel
  • OR Installed architecture is mips
  • OR Installed architecture is ia64
  • OR Installed architecture is alpha
  • OR Installed architecture is powerpc
  • OR Installed architecture is mipsel
  • OR Installed architecture is hppa
  • AND Packages section
  • kpartx is earlier than 0.4.8-14+lenny1
  • OR multipath-tools is earlier than 0.4.8-14+lenny1
  • OR Release section
  • Debian GNU/Linux 4.0 is installed.
  • AND Supported architectures section
  • Installed architecture is s390
  • OR Installed architecture is amd64
  • OR Installed architecture is sparc
  • OR Installed architecture is powerpc
  • OR Installed architecture is i386
  • OR Installed architecture is alpha
  • OR Installed architecture is mips
  • OR Installed architecture is mipsel
  • OR Installed architecture is hppa
  • AND multipath-tools is earlier than 0.4.7-1.1etch2
    • BACK