Oval Definition:oval:org.opensuse.security:def:20092409
Revision Date:2015-11-16Version:1
Title:CVE-2009-2409
Description:
The Network Security Services (NSS) library before 3.12.3, as used in Firefox; GnuTLS before 2.6.4 and 2.7.4; OpenSSL 0.9.8 through 0.9.8k; and other products support MD2 with X.509 certificates, which might allow remote attackers to spoof certificates by using MD2 design flaws to generate a hash collision in less than brute-force time. NOTE: the scope of this issue is currently limited because the amount of computation required is still large.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2009-2409
Platform(s):openSUSE 11.0
openSUSE 11.1
openSUSE 11.2
Product(s):
Definition Synopsis
  • Release Information
  • suse110 is installed
  • AND
  • java-1_6_0-openjdk-demo less than 1.6.2_b16-0.1
  • OR java-1_6_0-openjdk-devel less than 1.6.2_b16-0.1
  • OR java-1_6_0-openjdk-javadoc less than 1.6.2_b16-0.1
  • OR java-1_6_0-openjdk-plugin less than 1.6.2_b16-0.1
  • OR java-1_6_0-openjdk-src less than 1.6.2_b16-0.1
  • OR java-1_6_0-openjdk less than 1.6.2_b16-0.1
  • OR Package Information
  • suse111 is installed
  • AND
  • java-1_6_0-openjdk-demo less than 1.6.2_b16-0.1.1
  • OR java-1_6_0-openjdk-devel less than 1.6.2_b16-0.1.1
  • OR java-1_6_0-openjdk-javadoc less than 1.6.2_b16-0.1.1
  • OR java-1_6_0-openjdk-plugin less than 1.6.2_b16-0.1.1
  • OR java-1_6_0-openjdk-src less than 1.6.2_b16-0.1.1
  • OR java-1_6_0-openjdk less than 1.6.2_b16-0.1.1
  • OR Package Information
  • suse112 is installed
  • AND
  • java-1_6_0-openjdk-demo less than 1.6.0.0_b16-5.8.1
  • OR java-1_6_0-openjdk-devel less than 1.6.0.0_b16-5.8.1
  • OR java-1_6_0-openjdk-javadoc less than 1.6.0.0_b16-5.8.1
  • OR java-1_6_0-openjdk-plugin less than 1.6.0.0_b16-5.8.1
  • OR java-1_6_0-openjdk-src less than 1.6.0.0_b16-5.8.1
  • OR java-1_6_0-openjdk less than 1.6.0.0_b16-5.8.1
    • BACK