Oval Definition:	oval:org.opensuse.security:def:20090115
Revision Date: 2015-11-16 Version: 1 Title: CVE-2009-0115 Description: The Device Mapper multipathing driver (aka multipath-tools or device-mapper-multipath) 0.4.8, as used in SUSE openSUSE, SUSE Linux Enterprise Server (SLES), Fedora, and possibly other operating systems, uses world-writable permissions for the socket file (aka /var/run/multipathd.sock), which allows local users to send arbitrary commands to the multipath daemon. Family: unix Class: vulnerability Status: Reference(s): CVE-2009-0115 Platform(s): Novell Linux Desktop 9 for x86 Novell Linux Desktop 9 for x86_64 Open Enterprise Server openSUSE 10.3 openSUSE 11.0 openSUSE 11.1 Product(s): Definition Synopsis Release Information suse110 is installed AND kpartx less than 0.4.7-127.2 OR multipath-tools less than 0.4.7-127.2 OR Package Information suse111 is installed AND kpartx less than 0.4.8-26.10.1 OR multipath-tools less than 0.4.8-26.10.1 OR Package Information sles9-nld is installed AND multipath-tools less than 0.4.7-75.21
BACK