Oval Definition:	oval:org.mitre.oval:tst:38156
Comment: bind is earlier than 20:9.2.4-30.el4_7.1 Type: rpminfo_test Namespace: linux Check_Existence: at_least_one_exists Check: at least one State Operator: AND References Object: oval:org.mitre.oval:obj:14143 State: oval:org.mitre.oval:ste:10771 Referencing Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:10879 V BIND 9.6.0, 9.5.1, 9.5.0, 9.4.3, and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077. 2013-04-29
BACK