Oval Definition:oval:org.opensuse.security:def:20091391
Revision Date:2022-05-20Version:1
Title:CVE-2009-1391
Description:

Off-by-one error in the inflate function in Zlib.xs in Compress::Raw::Zlib Perl module before 2.017, as used in AMaViS, SpamAssassin, and possibly other products, allows context-dependent attackers to cause a denial of service (hang or crash) via a crafted zlib compressed stream that triggers a heap-based buffer overflow, as exploited in the wild by Trojan.Downloader-71014 in June 2009.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2009-1391
Mitre CVE-2009-1391
SUSE CVE-2009-1391
SUSE-SR:2009:012
SUSE-SR:2009:012
Platform(s):openSUSE 10.3
openSUSE 11.0
openSUSE 11.1
SUSE Linux Enterprise Desktop 11 GA
SUSE Linux Enterprise SDK 11 GA
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 GA
SUSE Linux Enterprise Server for SAP Applications 11
Product(s):
Definition Synopsis
  • Release Information
  • suse110 is installed
  • perl-32bit less than 5.10.0-37.8
  • OR perl-64bit less than 5.10.0-37.8
  • OR perl-base less than 5.10.0-37.8
  • OR perl-doc less than 5.10.0-37.8
  • OR perl less than 5.10.0-37.8
  • OR
  • suse111 is installed
  • perl-32bit less than 5.10.0-62.18.1
  • OR perl-64bit less than 5.10.0-62.18.1
  • OR perl-base-32bit less than 5.10.0-62.18.1
  • OR perl-base-64bit less than 5.10.0-62.18.1
  • OR perl-base less than 5.10.0-62.18.1
  • OR perl-doc less than 5.10.0-62.18.1
  • OR perl less than 5.10.0-62.18.1
  • OR Package Information
  • sle11-sdk is installed
  • perl-base-32bit less than 5.10.0-64.43.1
  • OR perl-base-x86 less than 5.10.0-64.43.1
  • OR
  • sled11 is installed
  • perl-32bit less than 5.10.0-64.43.1
  • OR perl-base less than 5.10.0-64.43.1
  • OR perl-doc less than 5.10.0-64.43.1
  • OR perl less than 5.10.0-64.43.1
  • OR
  • sles11 is installed
  • perl-32bit less than 5.10.0-64.43.1
  • OR perl-base less than 5.10.0-64.43.1
  • OR perl-doc less than 5.10.0-64.43.1
  • OR perl-x86 less than 5.10.0-64.43.1
  • OR perl less than 5.10.0-64.43.1
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 is installed
  • AND Package Information
  • perl-5.10.0-64.43 is installed
  • OR perl-32bit-5.10.0-64.43 is installed
  • OR perl-base-5.10.0-64.43 is installed
  • OR perl-doc-5.10.0-64.43 is installed
  • OR perl-x86-5.10.0-64.43 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 is installed
  • AND Package Information
  • perl-5.10.0-64.43.1 is installed
  • OR perl-32bit-5.10.0-64.43.1 is installed
  • OR perl-base-5.10.0-64.43.1 is installed
  • OR perl-doc-5.10.0-64.43.1 is installed
  • OR perl-x86-5.10.0-64.43.1 is installed
    • BACK