Oval Definition:	oval:org.opensuse.security:def:20092957
Revision Date: 2015-11-16 Version: 1 Title: CVE-2009-2957 Description: Heap-based buffer overflow in the tftp_request function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, might allow remote attackers to execute arbitrary code via a long filename in a TFTP packet, as demonstrated by a read (aka RRQ) request. Family: unix Class: vulnerability Status: Reference(s): CVE-2009-2957 Platform(s): openSUSE 10.3 openSUSE 11.0 openSUSE 11.1 SUSE Linux Enterprise Desktop 11 GA SUSE Linux Enterprise Server 11 GA Product(s): Definition Synopsis Release Information sled11 is installed AND dnsmasq less than 2.45-12.23.1 OR Package Information suse110 is installed AND dnsmasq less than 2.45-0.3 OR suse111 is installed AND dnsmasq less than 2.45-12.16.1
BACK