OVAL Reference oval:org.mitre.oval:def:8408

Oval Definition:

oval:org.mitre.oval:def:8408

Revision Date:	2014-06-23	Version:	18
Title:	DSA-1762 icu -- insufficient input sanitising
Description:	It was discovered that icu, the internal components for Unicode, did not properly sanitise invalid encoded data, which could lead to crossite scripting attacks.
Family:	unix	Class:	patch
Status:	ACCEPTED	Reference(s):	CVE-2008-1036 DSA-1762
Platform(s):	Debian GNU/Linux 4.0 Debian GNU/Linux 5.0	Product(s):	icu
Definition Synopsis
Release section Debian GNU/Linux 5.0 is installed AND Architecture section Architecture independent section Installed architecture is all AND icu-doc is earlier than 3.8.1-3+lenny1 OR Architecture dependent section Supported architectures section Installed architecture is s390 OR Installed architecture is amd64 OR Installed architecture is sparc OR Installed architecture is arm OR Installed architecture is i386 OR Installed architecture is armel OR Installed architecture is mips OR Installed architecture is ia64 OR Installed architecture is alpha OR Installed architecture is powerpc OR Installed architecture is mipsel OR Installed architecture is hppa AND Packages section libicu38 is earlier than 3.8.1-3+lenny1 OR libicu38-dbg is earlier than 3.8.1-3+lenny1 OR libicu-dev is earlier than 3.8.1-3+lenny1 OR Architecture dependent section Installed architecture is amd64 AND Packages section lib32icu38 is earlier than 3.8.1-3+lenny1 OR lib32icu-dev is earlier than 3.8.1-3+lenny1 OR Release section Debian GNU/Linux 4.0 is installed. AND Architecture section Architecture independent section Installed architecture is all AND icu-doc is earlier than 3.6-2etch2 OR Architecture dependent section Supported architectures section Installed architecture is s390 OR Installed architecture is amd64 OR Installed architecture is sparc OR Installed architecture is powerpc OR Installed architecture is i386 OR Installed architecture is mips OR Installed architecture is ia64 OR Installed architecture is alpha OR Installed architecture is mipsel OR Installed architecture is arm AND Packages section libicu36-dev is earlier than 3.6-2etch2 OR libicu36 is earlier than 3.6-2etch2

BACK