Oval Definition:	oval:org.opensuse.security:def:20083532
Revision Date: 2022-06-30 Version: 1 Title: CVE-2008-3532 Description: The NSS plugin in libpurple in Pidgin 2.4.3 does not verify SSL certificates, which makes it easier for remote attackers to trick a user into accepting an invalid server certificate for a spoofed service. Family: unix Class: vulnerability Status: Reference(s): CVE-2008-3532 Mitre CVE-2008-3532 SUSE CVE-2008-3532 Platform(s): openSUSE 10.3 openSUSE 11.0 openSUSE Tumbleweed SUSE Linux Enterprise SDK 10 SP2 SUSE Linux Enterprise Software Development Kit 11 SP4 Product(s): Definition Synopsis sles10-sp2-sdk is installed AND Package Information finch-devel less than 2.3.1-10.9 OR finch less than 2.3.1-10.9 OR libpurple-devel less than 2.3.1-10.9 OR libpurple less than 2.3.1-10.9 OR pidgin-devel less than 2.3.1-10.9 OR pidgin less than 2.3.1-10.9 Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information finch-2.6.6-0.25 is installed OR finch-devel-2.6.6-0.25 is installed OR libpurple-2.6.6-0.25 is installed OR libpurple-devel-2.6.6-0.25 is installed OR libpurple-lang-2.6.6-0.25 is installed OR pidgin-2.6.6-0.25 is installed OR pidgin-devel-2.6.6-0.25 is installed Definition Synopsis openSUSE Tumbleweed is installed AND Package Information finch-2.14.7-1.1 is installed OR finch-devel-2.14.7-1.1 is installed OR libpurple-2.14.7-1.1 is installed OR libpurple-branding-upstream-2.14.7-1.1 is installed OR libpurple-devel-2.14.7-1.1 is installed OR libpurple-lang-2.14.7-1.1 is installed OR libpurple-plugin-sametime-2.14.7-1.1 is installed OR libpurple-tcl-2.14.7-1.1 is installed OR pidgin-2.14.7-1.1 is installed OR pidgin-devel-2.14.7-1.1 is installed
BACK