OVAL Reference oval:org.opensuse.security:def:20114913

Oval Definition:

oval:org.opensuse.security:def:20114913

Revision Date:	2017-09-27	Version:	1
Title:	CVE-2011-4913
Description:	The rose_parse_ccitt function in net/rose/rose_subr.c in the Linux kernel before 2.6.39 does not validate the FAC_CCITT_DEST_NSAP and FAC_CCITT_SRC_NSAP fields, which allows remote attackers to (1) cause a denial of service (integer underflow, heap memory corruption, and panic) via a small length value in data sent to a ROSE socket, or (2) conduct stack-based buffer overflow attacks via a large length value in data sent to a ROSE socket.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2011-4913
Platform(s):	SUSE Linux Enterprise Server 10 SP4 LTSS for AMD64 and Intel EM64T SUSE Linux Enterprise Server 10 SP4 LTSS for IBM zSeries 64bit SUSE Linux Enterprise Server 10 SP4 LTSS for x86	Product(s):
Definition Synopsis
Release Information sles10-sp4-ltss is installed AND kernel-debug less than 2.6.16.60-0.132.1 OR kernel-default less than 2.6.16.60-0.132.1 OR kernel-kdump less than 2.6.16.60-0.132.1 OR kernel-smp less than 2.6.16.60-0.132.1 OR kernel-source less than 2.6.16.60-0.132.1 OR kernel-syms less than 2.6.16.60-0.132.1 OR kernel-xen less than 2.6.16.60-0.132.1 OR Package Information sles10-sp4-ltss is installed AND kernel-default less than 2.6.16.60-0.132.1 OR kernel-source less than 2.6.16.60-0.132.1 OR kernel-syms less than 2.6.16.60-0.132.1 OR Package Information sles10-sp4-ltss is installed AND kernel-bigsmp less than 2.6.16.60-0.132.1 OR kernel-debug less than 2.6.16.60-0.132.1 OR kernel-default less than 2.6.16.60-0.132.1 OR kernel-kdump less than 2.6.16.60-0.132.1 OR kernel-kdumppae less than 2.6.16.60-0.132.1 OR kernel-smp less than 2.6.16.60-0.132.1 OR kernel-source less than 2.6.16.60-0.132.1 OR kernel-syms less than 2.6.16.60-0.132.1 OR kernel-vmi less than 2.6.16.60-0.132.1 OR kernel-vmipae less than 2.6.16.60-0.132.1 OR kernel-xen less than 2.6.16.60-0.132.1 OR kernel-xenpae less than 2.6.16.60-0.132.1

BACK