OVAL Reference oval:org.opensuse.security:def:20091962

Oval Definition:

oval:org.opensuse.security:def:20091962

Revision Date:	2022-09-02	Version:	1
Title:	CVE-2009-1962
Description:	Xfig, possibly 3.2.5, allows local users to read and write arbitrary files via a symlink attack on the (1) xfig-eps[PID], (2) xfig-pic[PID].pix, (3) xfig-pic[PID].err, (4) xfig-pcx[PID].pix, (5) xfig-xfigrc[PID], (6) xfig[PID], (7) xfig-print[PID], (8) xfig-export[PID].err, (9) xfig-batch[PID], (10) xfig-exp[PID], or (11) xfig-spell.[PID] temporary files, where [PID] is a process ID.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2009-1962 Mitre CVE-2009-1962 SUSE CVE-2009-1962
Platform(s):	openSUSE Tumbleweed SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 12 SP5 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP5	Product(s):
Definition Synopsis
Release Information SUSE Linux Enterprise Software Development Kit 12 is installed AND xfig-3.2.5c-2.8 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND xfig-3.2.5c-2.8 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND xfig-3.2.5c-2.8 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Software Development Kit 12 is installed AND xfig-3.2.5c-2 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND xfig-3.2.5c-2 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND xfig-3.2.5c-2 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND xfig-3.2.5c-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Software Development Kit 12 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP1 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP2 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND xfig-3.2.5c-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Software Development Kit 12 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP1 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP2 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND xfig-3.2.5c-2 is installed
Definition Synopsis
openSUSE Tumbleweed is installed AND xfig-3.2.6-1.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Software Development Kit 12 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP1 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP2 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND xfig-3.2.5c-2.8 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND xfig-3.2.5c-2.8 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND xfig-3.2.5c-2.8 is installed

BACK