OVAL Reference oval:org.opensuse.security:def:20134359

Oval Definition:

oval:org.opensuse.security:def:20134359

Revision Date:	2022-06-30	Version:	1
Title:	CVE-2013-4359
Description:	Integer overflow in kbdint.c in mod_sftp in ProFTPD 1.3.4d and 1.3.5r3 allows remote attackers to cause a denial of service (memory consumption) via a large response count value in an authentication request, which triggers a large memory allocation.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2013-4359 Mitre CVE-2013-4359 SUSE CVE-2013-4359 openSUSE-SU-2013:1563-1 openSUSE-SU-2015:1031-1
Platform(s):	openSUSE 12.2 Update openSUSE 12.3 Update openSUSE 13.1 openSUSE 13.2 openSUSE Tumbleweed	Product(s):
Definition Synopsis
openSUSE 13.1 is installed AND Package Information proftpd-1.3.5a-7.1 is installed OR proftpd-devel-1.3.5a-7.1 is installed OR proftpd-doc-1.3.5a-7.1 is installed OR proftpd-lang-1.3.5a-7.1 is installed OR proftpd-ldap-1.3.5a-7.1 is installed OR proftpd-mysql-1.3.5a-7.1 is installed OR proftpd-pgsql-1.3.5a-7.1 is installed OR proftpd-radius-1.3.5a-7.1 is installed OR proftpd-sqlite-1.3.5a-7.1 is installed
Definition Synopsis
openSUSE 13.2 is installed AND Package Information proftpd-1.3.5a-3.1 is installed OR proftpd-devel-1.3.5a-3.1 is installed OR proftpd-doc-1.3.5a-3.1 is installed OR proftpd-lang-1.3.5a-3.1 is installed OR proftpd-ldap-1.3.5a-3.1 is installed OR proftpd-mysql-1.3.5a-3.1 is installed OR proftpd-pgsql-1.3.5a-3.1 is installed OR proftpd-radius-1.3.5a-3.1 is installed OR proftpd-sqlite-1.3.5a-3.1 is installed
Definition Synopsis
openSUSE Tumbleweed is installed AND Package Information proftpd-1.3.5b-2.5 is installed OR proftpd-devel-1.3.5b-2.5 is installed OR proftpd-doc-1.3.5b-2.5 is installed OR proftpd-lang-1.3.5b-2.5 is installed OR proftpd-ldap-1.3.5b-2.5 is installed OR proftpd-mysql-1.3.5b-2.5 is installed OR proftpd-pgsql-1.3.5b-2.5 is installed OR proftpd-radius-1.3.5b-2.5 is installed OR proftpd-sqlite-1.3.5b-2.5 is installed

BACK