OVAL Reference oval:org.opensuse.security:def:20114914

Oval Definition:

oval:org.opensuse.security:def:20114914

Revision Date:	2017-09-27	Version:	1
Title:	CVE-2011-4914
Description:	The ROSE protocol implementation in the Linux kernel before 2.6.39 does not verify that certain data-length values are consistent with the amount of data sent, which might allow remote attackers to obtain sensitive information from kernel memory or cause a denial of service (out-of-bounds read) via crafted data to a ROSE socket.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2011-4914
Platform(s):	SUSE Linux Enterprise Server 10 SP4 LTSS for AMD64 and Intel EM64T SUSE Linux Enterprise Server 10 SP4 LTSS for IBM zSeries 64bit SUSE Linux Enterprise Server 10 SP4 LTSS for x86	Product(s):
Definition Synopsis
Release Information sles10-sp4-ltss is installed AND kernel-debug less than 2.6.16.60-0.132.1 OR kernel-default less than 2.6.16.60-0.132.1 OR kernel-kdump less than 2.6.16.60-0.132.1 OR kernel-smp less than 2.6.16.60-0.132.1 OR kernel-source less than 2.6.16.60-0.132.1 OR kernel-syms less than 2.6.16.60-0.132.1 OR kernel-xen less than 2.6.16.60-0.132.1 OR Package Information sles10-sp4-ltss is installed AND kernel-default less than 2.6.16.60-0.132.1 OR kernel-source less than 2.6.16.60-0.132.1 OR kernel-syms less than 2.6.16.60-0.132.1 OR Package Information sles10-sp4-ltss is installed AND kernel-bigsmp less than 2.6.16.60-0.132.1 OR kernel-debug less than 2.6.16.60-0.132.1 OR kernel-default less than 2.6.16.60-0.132.1 OR kernel-kdump less than 2.6.16.60-0.132.1 OR kernel-kdumppae less than 2.6.16.60-0.132.1 OR kernel-smp less than 2.6.16.60-0.132.1 OR kernel-source less than 2.6.16.60-0.132.1 OR kernel-syms less than 2.6.16.60-0.132.1 OR kernel-vmi less than 2.6.16.60-0.132.1 OR kernel-vmipae less than 2.6.16.60-0.132.1 OR kernel-xen less than 2.6.16.60-0.132.1 OR kernel-xenpae less than 2.6.16.60-0.132.1

BACK