OVAL Reference oval:org.opensuse.security:def:20102059

Oval Definition:

oval:org.opensuse.security:def:20102059

Revision Date:	2022-05-20	Version:	1
Title:	CVE-2010-2059
Description:	lib/fsm.c in RPM 4.8.0 and unspecified 4.7.x and 4.6.x versions, and RPM before 4.4.3, does not properly reset the metadata of an executable file during replacement of the file in an RPM package upgrade, which might allow local users to gain privileges by creating a hard link to a vulnerable (1) setuid or (2) setgid file.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2010-2059 Mitre CVE-2010-2059 SUSE CVE-2010-2059 openSUSE-SU-2010:0428-1 openSUSE-SU-2010:0428-1 openSUSE-SU-2010:0627-1 openSUSE-SU-2010:0627-1 openSUSE-SU-2010:0629-1 openSUSE-SU-2010:0629-1 SUSE-SR:2010:014 SUSE-SR:2010:014 SUSE-SR:2010:017 SUSE-SR:2010:017
Platform(s):	openSUSE 11.0 openSUSE 11.1 openSUSE 11.2 SUSE CORE 9 for AMD64 and Intel EM64T SUSE Linux Enterprise Desktop 10 SP3 for AMD64 and Intel EM64T SUSE Linux Enterprise Desktop 10 SP3 for x86 SUSE Linux Enterprise Desktop 11 GA SUSE Linux Enterprise Desktop 11 SP1 SUSE Linux Enterprise SDK 10 SP3 SUSE Linux Enterprise SDK 11 GA SUSE Linux Enterprise Server 10 SP3 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 GA SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP1 for VMware SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server for SAP 10 SP3 SUSE Linux Enterprise Server for SAP Applications 11 SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA SUSE Linux Enterprise Software Development Kit 11 SP1	Product(s):
Definition Synopsis
Release Information sles10-sp3 is installed AND popt-32bit less than 1.7-271.36.1 OR popt-64bit less than 1.7-271.36.1 OR popt-devel-32bit less than 1.7-271.36.1 OR popt-devel-64bit less than 1.7-271.36.1 OR popt-devel less than 1.7-271.36.1 OR popt-x86 less than 1.7-271.36.1 OR popt less than 1.7-271.36.1 OR rpm-devel less than 4.4.2-43.36.1 OR rpm-python less than 4.4.2-43.36.1 OR rpm less than 4.4.2-43.36.1 OR Package Information sles10-sp3-sap is installed AND popt-32bit less than 1.7-271.36.1 OR popt-devel-32bit less than 1.7-271.36.1 OR popt-devel less than 1.7-271.36.1 OR popt less than 1.7-271.36.1 OR rpm-devel less than 4.4.2-43.36.1 OR rpm-python less than 4.4.2-43.36.1 OR rpm less than 4.4.2-43.36.1 OR Package Information sles10-sp3-sdk is installed AND rpm-devel less than 4.4.2-43.36.1
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND Package Information popt-1.7-37.18.1 is installed OR popt-32bit-1.7-37.18.1 is installed OR popt-x86-1.7-37.18.1 is installed OR rpm-4.4.2.3-37.18.1 is installed OR rpm-32bit-4.4.2.3-37.18.1 is installed OR rpm-x86-4.4.2.3-37.18.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 is installed AND popt-1.7-37.18 is installed OR popt-32bit-1.7-37.18 is installed OR popt-x86-1.7-37.18 is installed OR rpm-4.4.2.3-37.18 is installed OR rpm-32bit-4.4.2.3-37.18 is installed OR rpm-x86-4.4.2.3-37.18 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1 is installed AND popt-1.7-37.25 is installed OR popt-32bit-1.7-37.25 is installed OR popt-x86-1.7-37.29.33 is installed OR rpm-4.4.2.3-37.25 is installed OR rpm-32bit-4.4.2.3-37.25 is installed OR rpm-x86-4.4.2.3-37.29.33 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 is installed AND popt-1.7-37.18 is installed OR popt-32bit-1.7-37.18 is installed OR popt-x86-1.7-37.18 is installed OR rpm-4.4.2.3-37.18 is installed OR rpm-32bit-4.4.2.3-37.18 is installed OR rpm-x86-4.4.2.3-37.18 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1 is installed AND popt-1.7-37.25 is installed OR popt-32bit-1.7-37.25 is installed OR popt-x86-1.7-37.29.33 is installed OR rpm-4.4.2.3-37.25 is installed OR rpm-32bit-4.4.2.3-37.25 is installed OR rpm-x86-4.4.2.3-37.29.33 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 is installed AND popt-1.7-37.18 is installed OR popt-32bit-1.7-37.18 is installed OR popt-x86-1.7-37.18 is installed OR rpm-4.4.2.3-37.18 is installed OR rpm-32bit-4.4.2.3-37.18 is installed OR rpm-x86-4.4.2.3-37.18 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1 is installed AND popt-1.7-37.25 is installed OR popt-32bit-1.7-37.29.33 is installed OR popt-x86-1.7-37.29.33 is installed OR rpm-4.4.2.3-37.25 is installed OR rpm-32bit-4.4.2.3-37.29.33 is installed OR rpm-python-4.4.2.3-37.29.35 is installed OR rpm-x86-4.4.2.3-37.29.33 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed AND popt-1.7-37.25 is installed OR popt-32bit-1.7-37.25 is installed OR rpm-4.4.2.3-37.25 is installed OR rpm-32bit-4.4.2.3-37.25 is installed OR rpm-python-4.4.2.3-37.29.35 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 is installed OR SUSE Linux Enterprise Server for SAP Applications 11 is installed AND popt-1.7-37.18.1 is installed OR popt-32bit-1.7-37.18.1 is installed OR popt-x86-1.7-37.18.1 is installed OR rpm-4.4.2.3-37.18.1 is installed OR rpm-32bit-4.4.2.3-37.18.1 is installed OR rpm-x86-4.4.2.3-37.18.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1 is installed AND popt-1.7-37.25.1 is installed OR popt-32bit-1.7-37.29.33.1 is installed OR popt-x86-1.7-37.29.33.1 is installed OR rpm-4.4.2.3-37.25.1 is installed OR rpm-32bit-4.4.2.3-37.29.33.1 is installed OR rpm-python-4.4.2.3-37.29.35.1 is installed OR rpm-x86-4.4.2.3-37.29.33.1 is installed OR Package Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed AND popt-1.7-37.25.1 is installed OR popt-32bit-1.7-37.25.1 is installed OR rpm-4.4.2.3-37.25.1 is installed OR rpm-32bit-4.4.2.3-37.25.1 is installed OR rpm-python-4.4.2.3-37.29.35.1 is installed

BACK