OVAL Reference oval:org.opensuse.security:def:20092404

Oval Definition:

oval:org.opensuse.security:def:20092404

Revision Date:	2022-05-20	Version:	1
Title:	CVE-2009-2404
Description:	Heap-based buffer overflow in a regular-expression parser in Mozilla Network Security Services (NSS) before 3.12.3, as used in Firefox, Thunderbird, SeaMonkey, Evolution, Pidgin, and AOL Instant Messenger (AIM), allows remote SSL servers to cause a denial of service (application crash) or possibly execute arbitrary code via a long domain name in the subject's Common Name (CN) field of an X.509 certificate, related to the cert_TestHostName function.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2009-2404 Mitre CVE-2009-2404 SUSE CVE-2009-2404 SUSE-SA:2009:048 SUSE-SA:2009:048
Platform(s):	Novell Linux Desktop 9 for x86 Novell Linux Desktop 9 for x86_64 Open Enterprise Server openSUSE 10.3 openSUSE 11.0 openSUSE 11.1 SUSE CORE 9 for AMD64 and Intel EM64T SUSE Linux Enterprise Desktop 11 GA SUSE Linux Enterprise SDK 10 SP2 SUSE Linux Enterprise SDK 11 GA SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 GA SUSE Linux Enterprise Server for SAP Applications 11	Product(s):
Definition Synopsis
sles10-sp2-sdk is installed AND mozilla-nss-tools less than 3.12.3.1-1.4.2
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND Package Information libfreebl3-3.12.3.1-1.1 is installed OR libfreebl3-32bit-3.12.3.1-1.1 is installed OR libfreebl3-x86-3.12.8-1.2 is installed OR mozilla-nspr-4.8.6-1.2 is installed OR mozilla-nspr-32bit-4.8.6-1.2 is installed OR mozilla-nspr-x86-4.8.6-1.2 is installed OR mozilla-nss-3.12.3.1-1.1 is installed OR mozilla-nss-32bit-3.12.3.1-1.1 is installed OR mozilla-nss-tools-3.12.3.1-1.1 is installed OR mozilla-nss-x86-3.12.8-1.2 is installed OR zlib-1.2.3-106 is installed OR zlib-32bit-1.2.3-106 is installed OR zlib-x86-1.2.3-106 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 is installed AND libfreebl3-3.12.3.1-1.1.1 is installed OR libfreebl3-32bit-3.12.8-1.2.1 is installed OR libfreebl3-x86-3.12.8-1.2.1 is installed OR mozilla-nspr-4.8.6-1.2.1 is installed OR mozilla-nspr-32bit-4.8.6-1.2.1 is installed OR mozilla-nspr-x86-4.8.6-1.2.1 is installed OR mozilla-nss-3.12.3.1-1.1.1 is installed OR mozilla-nss-32bit-3.12.8-1.2.1 is installed OR mozilla-nss-tools-3.12.3.1-1.1.1 is installed OR mozilla-nss-x86-3.12.8-1.2.1 is installed OR zlib-1.2.3-106.34 is installed OR zlib-32bit-1.2.3-106.34 is installed OR zlib-x86-1.2.3-106.34 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 11 is installed AND libfreebl3-3.12.3.1-1.1.1 is installed OR libfreebl3-32bit-3.12.3.1-1.1.1 is installed OR libfreebl3-x86-3.12.8-1.2.1 is installed OR mozilla-nspr-4.8.6-1.2.1 is installed OR mozilla-nspr-32bit-4.8.6-1.2.1 is installed OR mozilla-nspr-x86-4.8.6-1.2.1 is installed OR mozilla-nss-3.12.3.1-1.1.1 is installed OR mozilla-nss-32bit-3.12.3.1-1.1.1 is installed OR mozilla-nss-tools-3.12.3.1-1.1.1 is installed OR mozilla-nss-x86-3.12.8-1.2.1 is installed OR zlib-1.2.3-106.34 is installed OR zlib-32bit-1.2.3-106.34 is installed OR zlib-x86-1.2.3-106.34 is installed

BACK