OVAL Reference oval:org.opensuse.security:def:20083272

Oval Definition:

oval:org.opensuse.security:def:20083272

Revision Date:	2022-09-02	Version:	1
Title:	CVE-2008-3272
Description:	The snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss_synth.c in the sound subsystem in the Linux kernel before 2.6.27-rc2 does not verify that the device number is within the range defined by max_synthdev before returning certain data to the caller, which allows local users to obtain sensitive information.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2008-3272 Mitre CVE-2008-3272 SUSE CVE-2008-3272 SUSE-SA:2008:044 SUSE-SA:2008:047 SUSE-SA:2008:048 SUSE-SA:2008:049 SUSE-SA:2008:052 SUSE-SR:2008:025
Platform(s):	Novell Linux Desktop 9 for x86 Novell Linux Desktop 9 for x86_64 Open Enterprise Server openSUSE 10.3 openSUSE 11.0 SUSE CORE 9 for AMD64 and Intel EM64T SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Realtime 10 SP2 SUSE Linux Enterprise SDK 10 SP2 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15	Product(s):
Definition Synopsis
Release Information sles10-sp2-sdk is installed AND kernel-kdump less than 2.6.16.60-0.29 OR Package Information sles10-sp2-sdk is installed AND kernel-debug less than 2.6.16.60-0.29 OR Package Information sles10-sp2-sdk is installed AND kernel-debug less than 2.6.16.60-0.29 OR kernel-kdump less than 2.6.16.60-0.29 OR kernel-xen less than 2.6.16.60-0.29 OR kernel-xenpae less than 2.6.16.60-0.29 OR Package Information sles10-sp2-sdk is installed AND kernel-debug less than 2.6.16.60-0.30 OR kernel-kdump less than 2.6.16.60-0.30 OR kernel-xen less than 2.6.16.60-0.30 OR Package Information sles10-sp2-rt is installed AND kernel-rt less than 2.6.22.19-0.18 OR kernel-rt_bigsmp less than 2.6.22.19-0.18 OR kernel-rt_debug less than 2.6.22.19-0.18 OR kernel-rt_timing less than 2.6.22.19-0.18 OR kernel-source less than 2.6.22.19-0.18 OR kernel-syms less than 2.6.22.19-0.18
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND kernel-default is not affected OR kernel-source is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND kernel-default is not affected OR kernel-default-base is not affected OR kernel-default-devel is not affected OR kernel-devel is not affected OR kernel-macros is not affected OR kernel-source is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 15 is installed OR SUSE Linux Enterprise High Performance Computing 15 is installed OR SUSE Linux Enterprise Module for Basesystem 15 is installed OR SUSE Linux Enterprise Module for Development Tools 15 is installed OR SUSE Linux Enterprise Server 15 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND kernel-default is not affected OR kernel-source is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND kernel-default is not affected OR kernel-default-base is not affected OR kernel-default-devel is not affected OR kernel-devel is not affected OR kernel-macros is not affected OR kernel-source is not affected
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information kernel-default is not affected OR kernel-source is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed AND kernel-default is not affected OR kernel-source is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND kernel-default is not affected OR kernel-default-base is not affected OR kernel-default-devel is not affected OR kernel-devel is not affected OR kernel-macros is not affected OR kernel-source is not affected

BACK