Oval Definition:	oval:org.opensuse.security:def:20112500
Revision Date: 2022-05-20 Version: 1 Title: CVE-2011-2500 Description: The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not properly use DNS to verify access to NFS exports, which allows remote attackers to mount filesystems by establishing crafted DNS A and PTR records. Family: unix Class: vulnerability Status: Reference(s): CVE-2011-2500 Mitre CVE-2011-2500 SUSE CVE-2011-2500 openSUSE-SU-2011:0747-1 openSUSE-SU-2011:0747-1 openSUSE-SU-2011:0749-1 openSUSE-SU-2011:0749-1 Platform(s): openSUSE 11.4 SUSE Linux Enterprise Desktop 11 SP1 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP1 for VMware SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA Product(s): Definition Synopsis Release Information suse114 is installed AND nfs-client less than 1.2.3-11.16.1 OR nfs-doc less than 1.2.3-11.16.1 OR nfs-kernel-server less than 1.2.3-11.16.1 OR Package Information sled11-sp1 is installed nfs-client less than 1.2.1-2.18.1 OR nfs-kernel-server less than 1.2.1-2.18.1 OR sles11-sp1 is installed nfs-client less than 1.2.1-2.18.1 OR nfs-doc less than 1.2.1-2.18.1 OR nfs-kernel-server less than 1.2.1-2.18.1 Definition Synopsis SUSE Linux Enterprise Server 11 SP1 is installed AND Package Information nfs-client-1.2.1-2.18 is installed OR nfs-doc-1.2.1-2.18 is installed OR nfs-kernel-server-1.2.1-2.18 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP1 is installed AND Package Information nfs-client-1.2.1-2.18 is installed OR nfs-doc-1.2.1-2.18 is installed OR nfs-kernel-server-1.2.1-2.18 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP1 is installed AND Package Information nfs-client-1.2.1-2.18.1 is installed OR nfs-doc-1.2.1-2.18.1 is installed OR nfs-kernel-server-1.2.1-2.18.1 is installed
BACK