OVAL Reference oval:org.opensuse.security:def:20142972

Oval Definition:

oval:org.opensuse.security:def:20142972

Revision Date:	2022-06-30	Version:	1
Title:	CVE-2014-2972
Description:	expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2014-2972 Mitre CVE-2014-2972 SUSE CVE-2014-2972 openSUSE-SU-2014:0983-1 openSUSE-SU-2014:0986-1
Platform(s):	openSUSE 12.3 Update openSUSE 13.1 openSUSE 13.2 openSUSE Tumbleweed	Product(s):
Definition Synopsis
openSUSE 13.1 is installed AND Package Information exim-4.83-6.4.1 is installed OR eximon-4.83-6.4.1 is installed OR eximstats-html-4.83-6.4.1 is installed
Definition Synopsis
openSUSE 13.2 is installed AND exim-4.83-3.1.8 is installed
Definition Synopsis
openSUSE Tumbleweed is installed AND Package Information exim-4.86.2-2.2 is installed OR eximon-4.86.2-2.2 is installed OR eximstats-html-4.86.2-2.2 is installed