OVAL Reference oval:org.opensuse.security:def:20072452

Oval Definition:

oval:org.opensuse.security:def:20072452

Revision Date:	2022-06-30	Version:	1
Title:	CVE-2007-2452
Description:	Heap-based buffer overflow in the visit_old_format function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2007-2452 Mitre CVE-2007-2452 SUSE CVE-2007-2452
Platform(s):	openSUSE Tumbleweed SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4	Product(s):
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information findutils-4.4.0-38.26 is installed OR findutils-locate-4.4.0-38.26 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND findutils-4.4.0-38.26.1 is installed OR findutils-locate-4.4.0-38.26.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed AND findutils-4.4.0-38.26.1 is installed OR findutils-locate-4.4.0-38.26.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND findutils-4.4.0-38.26.1 is installed OR findutils-locate-4.4.0-38.26.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND findutils-4.4.0-38.26.1 is installed OR findutils-locate-4.4.0-38.26.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP4 is installed AND findutils-4.4.0-38.26.1 is installed OR findutils-locate-4.4.0-38.26.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP2 is installed OR SUSE Linux Enterprise Server 11 SP3 is installed OR SUSE Linux Enterprise Server 11 SP4 is installed AND findutils-4.4.0-38.26.1 is installed OR findutils-locate-4.4.0-38.26.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1 is installed AND findutils-4.4.0-38.24.11 is installed OR findutils-locate-4.4.0-38.24.11 is installed
Definition Synopsis
openSUSE Tumbleweed is installed AND Package Information findutils-4.8.0-2.15 is installed OR findutils-lang-4.8.0-2.15 is installed

BACK