Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2004-2541 (GCVE-0-2004-2541)
Vulnerability from cvelistv5
Published
2005-11-20 21:00
Modified
2024-08-08 01:29
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T01:29:14.068Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "ADV-2007-2732",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2007/2732"
},
{
"name": "11920",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/11920"
},
{
"name": "35462",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/35462"
},
{
"name": "oval:org.mitre.oval:def:10069",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL",
"x_transferred"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10069"
},
{
"name": "RHSA-2009:1101",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2009-1101.html"
},
{
"name": "APPLE-SA-2007-07-31",
"tags": [
"vendor-advisory",
"x_refsource_APPLE",
"x_transferred"
],
"url": "http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html"
},
{
"name": "13237",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/13237"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1064875\u0026group_id=4664\u0026atid=104664"
},
{
"name": "DSA-1064",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2006/dsa-1064"
},
{
"name": "GLSA-200606-10",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200606-10.xml"
},
{
"name": "20191",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/20191"
},
{
"name": "RHSA-2009:1102",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2009-1102.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://docs.info.apple.com/article.html?artnum=306172"
},
{
"name": "20564",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/20564"
},
{
"name": "25159",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/25159"
},
{
"name": "18050",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/18050"
},
{
"name": "26235",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/26235"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=490667"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2004-11-11T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-10-10T00:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "ADV-2007-2732",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2007/2732"
},
{
"name": "11920",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/11920"
},
{
"name": "35462",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/35462"
},
{
"name": "oval:org.mitre.oval:def:10069",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10069"
},
{
"name": "RHSA-2009:1101",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2009-1101.html"
},
{
"name": "APPLE-SA-2007-07-31",
"tags": [
"vendor-advisory",
"x_refsource_APPLE"
],
"url": "http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html"
},
{
"name": "13237",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/13237"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1064875\u0026group_id=4664\u0026atid=104664"
},
{
"name": "DSA-1064",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2006/dsa-1064"
},
{
"name": "GLSA-200606-10",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200606-10.xml"
},
{
"name": "20191",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/20191"
},
{
"name": "RHSA-2009:1102",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2009-1102.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://docs.info.apple.com/article.html?artnum=306172"
},
{
"name": "20564",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/20564"
},
{
"name": "25159",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/25159"
},
{
"name": "18050",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/18050"
},
{
"name": "26235",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/26235"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=490667"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2004-2541",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "ADV-2007-2732",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2007/2732"
},
{
"name": "11920",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/11920"
},
{
"name": "35462",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35462"
},
{
"name": "oval:org.mitre.oval:def:10069",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10069"
},
{
"name": "RHSA-2009:1101",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2009-1101.html"
},
{
"name": "APPLE-SA-2007-07-31",
"refsource": "APPLE",
"url": "http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html"
},
{
"name": "13237",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/13237"
},
{
"name": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1064875\u0026group_id=4664\u0026atid=104664",
"refsource": "MISC",
"url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1064875\u0026group_id=4664\u0026atid=104664"
},
{
"name": "DSA-1064",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2006/dsa-1064"
},
{
"name": "GLSA-200606-10",
"refsource": "GENTOO",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200606-10.xml"
},
{
"name": "20191",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/20191"
},
{
"name": "RHSA-2009:1102",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2009-1102.html"
},
{
"name": "http://docs.info.apple.com/article.html?artnum=306172",
"refsource": "CONFIRM",
"url": "http://docs.info.apple.com/article.html?artnum=306172"
},
{
"name": "20564",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/20564"
},
{
"name": "25159",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/25159"
},
{
"name": "18050",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/18050"
},
{
"name": "26235",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/26235"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=490667",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=490667"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2004-2541",
"datePublished": "2005-11-20T21:00:00",
"dateReserved": "2005-11-20T00:00:00",
"dateUpdated": "2024-08-08T01:29:14.068Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2004-2541\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2004-12-31T05:00:00.000\",\"lastModified\":\"2025-04-03T01:03:51.193\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":6.9,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.4,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cscope:cscope:15.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2F1D020-6884-4D6D-AB04-88119CB53F9E\"}]}]}],\"references\":[{\"url\":\"http://docs.info.apple.com/article.html?artnum=306172\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/13237\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/20191\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/20564\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/26235\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/35462\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1064875\u0026group_id=4664\u0026atid=104664\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2006/dsa-1064\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200606-10.xml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.osvdb.org/11920\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2009-1101.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2009-1102.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/18050\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/25159\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/2732\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=490667\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10069\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://docs.info.apple.com/article.html?artnum=306172\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/13237\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/20191\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/20564\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/26235\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/35462\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1064875\u0026group_id=4664\u0026atid=104664\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2006/dsa-1064\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200606-10.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.osvdb.org/11920\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2009-1101.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2009-1102.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/18050\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/25159\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/2732\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=490667\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10069\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
opensuse-su-2024:10705-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
cscope-15.9-1.9 on GA media
Notes
Title of the patch
cscope-15.9-1.9 on GA media
Description of the patch
These are all security issues fixed in the cscope-15.9-1.9 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10705
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "cscope-15.9-1.9 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the cscope-15.9-1.9 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10705",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10705-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2004-2541 page",
"url": "https://www.suse.com/security/cve/CVE-2004-2541/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2006-4262 page",
"url": "https://www.suse.com/security/cve/CVE-2006-4262/"
}
],
"title": "cscope-15.9-1.9 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10705-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cscope-15.9-1.9.aarch64",
"product": {
"name": "cscope-15.9-1.9.aarch64",
"product_id": "cscope-15.9-1.9.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-15.9-1.9.ppc64le",
"product": {
"name": "cscope-15.9-1.9.ppc64le",
"product_id": "cscope-15.9-1.9.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-15.9-1.9.s390x",
"product": {
"name": "cscope-15.9-1.9.s390x",
"product_id": "cscope-15.9-1.9.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-15.9-1.9.x86_64",
"product": {
"name": "cscope-15.9-1.9.x86_64",
"product_id": "cscope-15.9-1.9.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-15.9-1.9.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cscope-15.9-1.9.aarch64"
},
"product_reference": "cscope-15.9-1.9.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-15.9-1.9.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cscope-15.9-1.9.ppc64le"
},
"product_reference": "cscope-15.9-1.9.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-15.9-1.9.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cscope-15.9-1.9.s390x"
},
"product_reference": "cscope-15.9-1.9.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-15.9-1.9.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:cscope-15.9-1.9.x86_64"
},
"product_reference": "cscope-15.9-1.9.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2004-2541",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2004-2541"
}
],
"notes": [
{
"category": "general",
"text": "Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cscope-15.9-1.9.aarch64",
"openSUSE Tumbleweed:cscope-15.9-1.9.ppc64le",
"openSUSE Tumbleweed:cscope-15.9-1.9.s390x",
"openSUSE Tumbleweed:cscope-15.9-1.9.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2004-2541",
"url": "https://www.suse.com/security/cve/CVE-2004-2541"
},
{
"category": "external",
"summary": "SUSE Bug 177568 for CVE-2004-2541",
"url": "https://bugzilla.suse.com/177568"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cscope-15.9-1.9.aarch64",
"openSUSE Tumbleweed:cscope-15.9-1.9.ppc64le",
"openSUSE Tumbleweed:cscope-15.9-1.9.s390x",
"openSUSE Tumbleweed:cscope-15.9-1.9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2004-2541"
},
{
"cve": "CVE-2006-4262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2006-4262"
}
],
"notes": [
{
"category": "general",
"text": "Multiple buffer overflows in cscope 15.5 and earlier allow user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple vectors including (1) a long pathname that is not properly handled during file list parsing, (2) long pathnames that result from path variable expansion such as tilde expansion for the HOME environment variable, and (3) a long -f (aka reffile) command line argument.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:cscope-15.9-1.9.aarch64",
"openSUSE Tumbleweed:cscope-15.9-1.9.ppc64le",
"openSUSE Tumbleweed:cscope-15.9-1.9.s390x",
"openSUSE Tumbleweed:cscope-15.9-1.9.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2006-4262",
"url": "https://www.suse.com/security/cve/CVE-2006-4262"
},
{
"category": "external",
"summary": "SUSE Bug 200534 for CVE-2006-4262",
"url": "https://bugzilla.suse.com/200534"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:cscope-15.9-1.9.aarch64",
"openSUSE Tumbleweed:cscope-15.9-1.9.ppc64le",
"openSUSE Tumbleweed:cscope-15.9-1.9.s390x",
"openSUSE Tumbleweed:cscope-15.9-1.9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2006-4262"
}
]
}
rhsa-2009:1101
Vulnerability from csaf_redhat
Published
2009-06-15 21:04
Modified
2024-11-22 02:45
Summary
Red Hat Security Advisory: cscope security update
Notes
Topic
An updated cscope package that fixes multiple security issues is now
available for Red Hat Enterprise Linux 3 and 4.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Details
cscope is a mature, ncurses-based, C source-code tree browsing tool.
Multiple buffer overflow flaws were found in cscope. An attacker could
create a specially crafted source code file that could cause cscope to
crash or, possibly, execute arbitrary code when browsed with cscope.
(CVE-2004-2541, CVE-2006-4262, CVE-2009-0148, CVE-2009-1577)
All users of cscope are advised to upgrade to this updated package, which
contains backported patches to fix these issues. All running instances of
cscope must be restarted for this update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An updated cscope package that fixes multiple security issues is now\navailable for Red Hat Enterprise Linux 3 and 4.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.",
"title": "Topic"
},
{
"category": "general",
"text": "cscope is a mature, ncurses-based, C source-code tree browsing tool.\n\nMultiple buffer overflow flaws were found in cscope. An attacker could\ncreate a specially crafted source code file that could cause cscope to\ncrash or, possibly, execute arbitrary code when browsed with cscope.\n(CVE-2004-2541, CVE-2006-4262, CVE-2009-0148, CVE-2009-1577)\n\nAll users of cscope are advised to upgrade to this updated package, which\ncontains backported patches to fix these issues. All running instances of\ncscope must be restarted for this update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2009:1101",
"url": "https://access.redhat.com/errata/RHSA-2009:1101"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "203645",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=203645"
},
{
"category": "external",
"summary": "490667",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=490667"
},
{
"category": "external",
"summary": "499174",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=499174"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1101.json"
}
],
"title": "Red Hat Security Advisory: cscope security update",
"tracking": {
"current_release_date": "2024-11-22T02:45:05+00:00",
"generator": {
"date": "2024-11-22T02:45:05+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2009:1101",
"initial_release_date": "2009-06-15T21:04:00+00:00",
"revision_history": [
{
"date": "2009-06-15T21:04:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2009-06-15T17:12:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T02:45:05+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AS version 4",
"product": {
"name": "Red Hat Enterprise Linux AS version 4",
"product_id": "4AS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::as"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop version 4",
"product": {
"name": "Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::desktop"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ES version 4",
"product": {
"name": "Red Hat Enterprise Linux ES version 4",
"product_id": "4ES",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::es"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux WS version 4",
"product": {
"name": "Red Hat Enterprise Linux WS version 4",
"product_id": "4WS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::ws"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AS version 3",
"product": {
"name": "Red Hat Enterprise Linux AS version 3",
"product_id": "3AS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::as"
}
}
},
{
"category": "product_name",
"name": "Red Hat Desktop version 3",
"product": {
"name": "Red Hat Desktop version 3",
"product_id": "3Desktop",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::desktop"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ES version 3",
"product": {
"name": "Red Hat Enterprise Linux ES version 3",
"product_id": "3ES",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::es"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux WS version 3",
"product": {
"name": "Red Hat Enterprise Linux WS version 3",
"product_id": "3WS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::ws"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"product": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"product_id": "cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-10.RHEL4.3?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-10.RHEL4.3.ia64",
"product": {
"name": "cscope-0:15.5-10.RHEL4.3.ia64",
"product_id": "cscope-0:15.5-10.RHEL4.3.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-10.RHEL4.3?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-16.RHEL3.ia64",
"product": {
"name": "cscope-0:15.5-16.RHEL3.ia64",
"product_id": "cscope-0:15.5-16.RHEL3.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-16.RHEL3?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"product": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"product_id": "cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-16.RHEL3?arch=ia64"
}
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"product": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"product_id": "cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-10.RHEL4.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-10.RHEL4.3.x86_64",
"product": {
"name": "cscope-0:15.5-10.RHEL4.3.x86_64",
"product_id": "cscope-0:15.5-10.RHEL4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-10.RHEL4.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-16.RHEL3.x86_64",
"product": {
"name": "cscope-0:15.5-16.RHEL3.x86_64",
"product_id": "cscope-0:15.5-16.RHEL3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-16.RHEL3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"product": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"product_id": "cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-16.RHEL3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"product": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"product_id": "cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-10.RHEL4.3?arch=i386"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-10.RHEL4.3.i386",
"product": {
"name": "cscope-0:15.5-10.RHEL4.3.i386",
"product_id": "cscope-0:15.5-10.RHEL4.3.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-10.RHEL4.3?arch=i386"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-16.RHEL3.i386",
"product": {
"name": "cscope-0:15.5-16.RHEL3.i386",
"product_id": "cscope-0:15.5-16.RHEL3.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-16.RHEL3?arch=i386"
}
}
},
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-16.RHEL3.i386",
"product": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.i386",
"product_id": "cscope-debuginfo-0:15.5-16.RHEL3.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-16.RHEL3?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-0:15.5-10.RHEL4.3.src",
"product": {
"name": "cscope-0:15.5-10.RHEL4.3.src",
"product_id": "cscope-0:15.5-10.RHEL4.3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-10.RHEL4.3?arch=src"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-16.RHEL3.src",
"product": {
"name": "cscope-0:15.5-16.RHEL3.src",
"product_id": "cscope-0:15.5-16.RHEL3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-16.RHEL3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"product": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"product_id": "cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-10.RHEL4.3?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-10.RHEL4.3.ppc",
"product": {
"name": "cscope-0:15.5-10.RHEL4.3.ppc",
"product_id": "cscope-0:15.5-10.RHEL4.3.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-10.RHEL4.3?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-16.RHEL3.ppc",
"product": {
"name": "cscope-0:15.5-16.RHEL3.ppc",
"product_id": "cscope-0:15.5-16.RHEL3.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-16.RHEL3?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"product": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"product_id": "cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-16.RHEL3?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"product": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"product_id": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-10.RHEL4.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-10.RHEL4.3.s390x",
"product": {
"name": "cscope-0:15.5-10.RHEL4.3.s390x",
"product_id": "cscope-0:15.5-10.RHEL4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-10.RHEL4.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-16.RHEL3.s390x",
"product": {
"name": "cscope-0:15.5-16.RHEL3.s390x",
"product_id": "cscope-0:15.5-16.RHEL3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-16.RHEL3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"product": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"product_id": "cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-16.RHEL3?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"product": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"product_id": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-10.RHEL4.3?arch=s390"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-10.RHEL4.3.s390",
"product": {
"name": "cscope-0:15.5-10.RHEL4.3.s390",
"product_id": "cscope-0:15.5-10.RHEL4.3.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-10.RHEL4.3?arch=s390"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-16.RHEL3.s390",
"product": {
"name": "cscope-0:15.5-16.RHEL3.s390",
"product_id": "cscope-0:15.5-16.RHEL3.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-16.RHEL3?arch=s390"
}
}
},
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-16.RHEL3.s390",
"product": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.s390",
"product_id": "cscope-debuginfo-0:15.5-16.RHEL3.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-16.RHEL3?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.i386 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:cscope-0:15.5-16.RHEL3.i386"
},
"product_reference": "cscope-0:15.5-16.RHEL3.i386",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.ia64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:cscope-0:15.5-16.RHEL3.ia64"
},
"product_reference": "cscope-0:15.5-16.RHEL3.ia64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.ppc as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:cscope-0:15.5-16.RHEL3.ppc"
},
"product_reference": "cscope-0:15.5-16.RHEL3.ppc",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.s390 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:cscope-0:15.5-16.RHEL3.s390"
},
"product_reference": "cscope-0:15.5-16.RHEL3.s390",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.s390x as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:cscope-0:15.5-16.RHEL3.s390x"
},
"product_reference": "cscope-0:15.5-16.RHEL3.s390x",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.src as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:cscope-0:15.5-16.RHEL3.src"
},
"product_reference": "cscope-0:15.5-16.RHEL3.src",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:cscope-0:15.5-16.RHEL3.x86_64"
},
"product_reference": "cscope-0:15.5-16.RHEL3.x86_64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.i386 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:cscope-debuginfo-0:15.5-16.RHEL3.i386"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.i386",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.ia64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:cscope-debuginfo-0:15.5-16.RHEL3.ia64"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.ppc as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:cscope-debuginfo-0:15.5-16.RHEL3.ppc"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.s390 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.s390",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.s390x as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390x"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.i386 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:cscope-0:15.5-16.RHEL3.i386"
},
"product_reference": "cscope-0:15.5-16.RHEL3.i386",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.ia64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:cscope-0:15.5-16.RHEL3.ia64"
},
"product_reference": "cscope-0:15.5-16.RHEL3.ia64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.ppc as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:cscope-0:15.5-16.RHEL3.ppc"
},
"product_reference": "cscope-0:15.5-16.RHEL3.ppc",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.s390 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:cscope-0:15.5-16.RHEL3.s390"
},
"product_reference": "cscope-0:15.5-16.RHEL3.s390",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.s390x as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:cscope-0:15.5-16.RHEL3.s390x"
},
"product_reference": "cscope-0:15.5-16.RHEL3.s390x",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.src as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:cscope-0:15.5-16.RHEL3.src"
},
"product_reference": "cscope-0:15.5-16.RHEL3.src",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.x86_64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:cscope-0:15.5-16.RHEL3.x86_64"
},
"product_reference": "cscope-0:15.5-16.RHEL3.x86_64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.i386 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.i386"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.i386",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.ia64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ia64"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.ppc as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ppc"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.s390 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.s390",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.s390x as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390x"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.x86_64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.x86_64"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.i386 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:cscope-0:15.5-16.RHEL3.i386"
},
"product_reference": "cscope-0:15.5-16.RHEL3.i386",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.ia64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:cscope-0:15.5-16.RHEL3.ia64"
},
"product_reference": "cscope-0:15.5-16.RHEL3.ia64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.ppc as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:cscope-0:15.5-16.RHEL3.ppc"
},
"product_reference": "cscope-0:15.5-16.RHEL3.ppc",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.s390 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:cscope-0:15.5-16.RHEL3.s390"
},
"product_reference": "cscope-0:15.5-16.RHEL3.s390",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.s390x as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:cscope-0:15.5-16.RHEL3.s390x"
},
"product_reference": "cscope-0:15.5-16.RHEL3.s390x",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.src as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:cscope-0:15.5-16.RHEL3.src"
},
"product_reference": "cscope-0:15.5-16.RHEL3.src",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:cscope-0:15.5-16.RHEL3.x86_64"
},
"product_reference": "cscope-0:15.5-16.RHEL3.x86_64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.i386 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:cscope-debuginfo-0:15.5-16.RHEL3.i386"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.i386",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.ia64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:cscope-debuginfo-0:15.5-16.RHEL3.ia64"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.ppc as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:cscope-debuginfo-0:15.5-16.RHEL3.ppc"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.s390 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.s390",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.s390x as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390x"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:cscope-debuginfo-0:15.5-16.RHEL3.x86_64"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.i386 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:cscope-0:15.5-16.RHEL3.i386"
},
"product_reference": "cscope-0:15.5-16.RHEL3.i386",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.ia64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:cscope-0:15.5-16.RHEL3.ia64"
},
"product_reference": "cscope-0:15.5-16.RHEL3.ia64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.ppc as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:cscope-0:15.5-16.RHEL3.ppc"
},
"product_reference": "cscope-0:15.5-16.RHEL3.ppc",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.s390 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:cscope-0:15.5-16.RHEL3.s390"
},
"product_reference": "cscope-0:15.5-16.RHEL3.s390",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.s390x as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:cscope-0:15.5-16.RHEL3.s390x"
},
"product_reference": "cscope-0:15.5-16.RHEL3.s390x",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.src as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:cscope-0:15.5-16.RHEL3.src"
},
"product_reference": "cscope-0:15.5-16.RHEL3.src",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-16.RHEL3.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:cscope-0:15.5-16.RHEL3.x86_64"
},
"product_reference": "cscope-0:15.5-16.RHEL3.x86_64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.i386 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:cscope-debuginfo-0:15.5-16.RHEL3.i386"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.i386",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.ia64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:cscope-debuginfo-0:15.5-16.RHEL3.ia64"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.ppc as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:cscope-debuginfo-0:15.5-16.RHEL3.ppc"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.s390 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.s390",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.s390x as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390x"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-16.RHEL3.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64"
},
"product_reference": "cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:cscope-0:15.5-10.RHEL4.3.i386"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:cscope-0:15.5-10.RHEL4.3.ia64"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:cscope-0:15.5-10.RHEL4.3.ppc"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:cscope-0:15.5-10.RHEL4.3.s390"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:cscope-0:15.5-10.RHEL4.3.s390x"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.src as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:cscope-0:15.5-10.RHEL4.3.src"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.src",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:cscope-0:15.5-10.RHEL4.3.x86_64"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:cscope-0:15.5-10.RHEL4.3.i386"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:cscope-0:15.5-10.RHEL4.3.ia64"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:cscope-0:15.5-10.RHEL4.3.ppc"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:cscope-0:15.5-10.RHEL4.3.s390"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:cscope-0:15.5-10.RHEL4.3.s390x"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.src as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:cscope-0:15.5-10.RHEL4.3.src"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.src",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:cscope-0:15.5-10.RHEL4.3.x86_64"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.i386"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:cscope-0:15.5-10.RHEL4.3.i386"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:cscope-0:15.5-10.RHEL4.3.ia64"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:cscope-0:15.5-10.RHEL4.3.ppc"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:cscope-0:15.5-10.RHEL4.3.s390"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:cscope-0:15.5-10.RHEL4.3.s390x"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.src as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:cscope-0:15.5-10.RHEL4.3.src"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.src",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:cscope-0:15.5-10.RHEL4.3.x86_64"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.i386"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:cscope-0:15.5-10.RHEL4.3.i386"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:cscope-0:15.5-10.RHEL4.3.ia64"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:cscope-0:15.5-10.RHEL4.3.ppc"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:cscope-0:15.5-10.RHEL4.3.s390"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:cscope-0:15.5-10.RHEL4.3.s390x"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.src as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:cscope-0:15.5-10.RHEL4.3.src"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.src",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-10.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:cscope-0:15.5-10.RHEL4.3.x86_64"
},
"product_reference": "cscope-0:15.5-10.RHEL4.3.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
},
"product_reference": "cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"relates_to_product_reference": "4WS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2004-2541",
"discovery_date": "2009-03-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "490667"
}
],
"notes": [
{
"category": "description",
"text": "Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cscope: multiple buffer overflows",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"3AS:cscope-0:15.5-16.RHEL3.i386",
"3AS:cscope-0:15.5-16.RHEL3.ia64",
"3AS:cscope-0:15.5-16.RHEL3.ppc",
"3AS:cscope-0:15.5-16.RHEL3.s390",
"3AS:cscope-0:15.5-16.RHEL3.s390x",
"3AS:cscope-0:15.5-16.RHEL3.src",
"3AS:cscope-0:15.5-16.RHEL3.x86_64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-0:15.5-16.RHEL3.src",
"3Desktop:cscope-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-0:15.5-16.RHEL3.i386",
"3ES:cscope-0:15.5-16.RHEL3.ia64",
"3ES:cscope-0:15.5-16.RHEL3.ppc",
"3ES:cscope-0:15.5-16.RHEL3.s390",
"3ES:cscope-0:15.5-16.RHEL3.s390x",
"3ES:cscope-0:15.5-16.RHEL3.src",
"3ES:cscope-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-0:15.5-16.RHEL3.i386",
"3WS:cscope-0:15.5-16.RHEL3.ia64",
"3WS:cscope-0:15.5-16.RHEL3.ppc",
"3WS:cscope-0:15.5-16.RHEL3.s390",
"3WS:cscope-0:15.5-16.RHEL3.s390x",
"3WS:cscope-0:15.5-16.RHEL3.src",
"3WS:cscope-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"4AS:cscope-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-0:15.5-10.RHEL4.3.src",
"4AS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-0:15.5-10.RHEL4.3.src",
"4Desktop:cscope-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-0:15.5-10.RHEL4.3.src",
"4ES:cscope-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-0:15.5-10.RHEL4.3.src",
"4WS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2004-2541"
},
{
"category": "external",
"summary": "RHBZ#490667",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=490667"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2004-2541",
"url": "https://www.cve.org/CVERecord?id=CVE-2004-2541"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-2541",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2004-2541"
}
],
"release_date": "2009-04-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2009-06-15T21:04:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
"product_ids": [
"3AS:cscope-0:15.5-16.RHEL3.i386",
"3AS:cscope-0:15.5-16.RHEL3.ia64",
"3AS:cscope-0:15.5-16.RHEL3.ppc",
"3AS:cscope-0:15.5-16.RHEL3.s390",
"3AS:cscope-0:15.5-16.RHEL3.s390x",
"3AS:cscope-0:15.5-16.RHEL3.src",
"3AS:cscope-0:15.5-16.RHEL3.x86_64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-0:15.5-16.RHEL3.src",
"3Desktop:cscope-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-0:15.5-16.RHEL3.i386",
"3ES:cscope-0:15.5-16.RHEL3.ia64",
"3ES:cscope-0:15.5-16.RHEL3.ppc",
"3ES:cscope-0:15.5-16.RHEL3.s390",
"3ES:cscope-0:15.5-16.RHEL3.s390x",
"3ES:cscope-0:15.5-16.RHEL3.src",
"3ES:cscope-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-0:15.5-16.RHEL3.i386",
"3WS:cscope-0:15.5-16.RHEL3.ia64",
"3WS:cscope-0:15.5-16.RHEL3.ppc",
"3WS:cscope-0:15.5-16.RHEL3.s390",
"3WS:cscope-0:15.5-16.RHEL3.s390x",
"3WS:cscope-0:15.5-16.RHEL3.src",
"3WS:cscope-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"4AS:cscope-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-0:15.5-10.RHEL4.3.src",
"4AS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-0:15.5-10.RHEL4.3.src",
"4Desktop:cscope-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-0:15.5-10.RHEL4.3.src",
"4ES:cscope-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-0:15.5-10.RHEL4.3.src",
"4WS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2009:1101"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"3AS:cscope-0:15.5-16.RHEL3.i386",
"3AS:cscope-0:15.5-16.RHEL3.ia64",
"3AS:cscope-0:15.5-16.RHEL3.ppc",
"3AS:cscope-0:15.5-16.RHEL3.s390",
"3AS:cscope-0:15.5-16.RHEL3.s390x",
"3AS:cscope-0:15.5-16.RHEL3.src",
"3AS:cscope-0:15.5-16.RHEL3.x86_64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-0:15.5-16.RHEL3.src",
"3Desktop:cscope-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-0:15.5-16.RHEL3.i386",
"3ES:cscope-0:15.5-16.RHEL3.ia64",
"3ES:cscope-0:15.5-16.RHEL3.ppc",
"3ES:cscope-0:15.5-16.RHEL3.s390",
"3ES:cscope-0:15.5-16.RHEL3.s390x",
"3ES:cscope-0:15.5-16.RHEL3.src",
"3ES:cscope-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-0:15.5-16.RHEL3.i386",
"3WS:cscope-0:15.5-16.RHEL3.ia64",
"3WS:cscope-0:15.5-16.RHEL3.ppc",
"3WS:cscope-0:15.5-16.RHEL3.s390",
"3WS:cscope-0:15.5-16.RHEL3.s390x",
"3WS:cscope-0:15.5-16.RHEL3.src",
"3WS:cscope-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"4AS:cscope-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-0:15.5-10.RHEL4.3.src",
"4AS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-0:15.5-10.RHEL4.3.src",
"4Desktop:cscope-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-0:15.5-10.RHEL4.3.src",
"4ES:cscope-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-0:15.5-10.RHEL4.3.src",
"4WS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "cscope: multiple buffer overflows"
},
{
"cve": "CVE-2006-4262",
"discovery_date": "2006-08-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "203645"
}
],
"notes": [
{
"category": "description",
"text": "Multiple buffer overflows in cscope 15.5 and earlier allow user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple vectors including (1) a long pathname that is not properly handled during file list parsing, (2) long pathnames that result from path variable expansion such as tilde expansion for the HOME environment variable, and (3) a long -f (aka reffile) command line argument.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cscope: multiple buffer overflows",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Enterprise Linux 5 was not vulnerable to this issue as it contained a backported patch since its first release.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"3AS:cscope-0:15.5-16.RHEL3.i386",
"3AS:cscope-0:15.5-16.RHEL3.ia64",
"3AS:cscope-0:15.5-16.RHEL3.ppc",
"3AS:cscope-0:15.5-16.RHEL3.s390",
"3AS:cscope-0:15.5-16.RHEL3.s390x",
"3AS:cscope-0:15.5-16.RHEL3.src",
"3AS:cscope-0:15.5-16.RHEL3.x86_64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-0:15.5-16.RHEL3.src",
"3Desktop:cscope-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-0:15.5-16.RHEL3.i386",
"3ES:cscope-0:15.5-16.RHEL3.ia64",
"3ES:cscope-0:15.5-16.RHEL3.ppc",
"3ES:cscope-0:15.5-16.RHEL3.s390",
"3ES:cscope-0:15.5-16.RHEL3.s390x",
"3ES:cscope-0:15.5-16.RHEL3.src",
"3ES:cscope-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-0:15.5-16.RHEL3.i386",
"3WS:cscope-0:15.5-16.RHEL3.ia64",
"3WS:cscope-0:15.5-16.RHEL3.ppc",
"3WS:cscope-0:15.5-16.RHEL3.s390",
"3WS:cscope-0:15.5-16.RHEL3.s390x",
"3WS:cscope-0:15.5-16.RHEL3.src",
"3WS:cscope-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"4AS:cscope-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-0:15.5-10.RHEL4.3.src",
"4AS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-0:15.5-10.RHEL4.3.src",
"4Desktop:cscope-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-0:15.5-10.RHEL4.3.src",
"4ES:cscope-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-0:15.5-10.RHEL4.3.src",
"4WS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-4262"
},
{
"category": "external",
"summary": "RHBZ#203645",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=203645"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-4262",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-4262"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-4262",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-4262"
}
],
"release_date": "2006-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2009-06-15T21:04:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
"product_ids": [
"3AS:cscope-0:15.5-16.RHEL3.i386",
"3AS:cscope-0:15.5-16.RHEL3.ia64",
"3AS:cscope-0:15.5-16.RHEL3.ppc",
"3AS:cscope-0:15.5-16.RHEL3.s390",
"3AS:cscope-0:15.5-16.RHEL3.s390x",
"3AS:cscope-0:15.5-16.RHEL3.src",
"3AS:cscope-0:15.5-16.RHEL3.x86_64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-0:15.5-16.RHEL3.src",
"3Desktop:cscope-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-0:15.5-16.RHEL3.i386",
"3ES:cscope-0:15.5-16.RHEL3.ia64",
"3ES:cscope-0:15.5-16.RHEL3.ppc",
"3ES:cscope-0:15.5-16.RHEL3.s390",
"3ES:cscope-0:15.5-16.RHEL3.s390x",
"3ES:cscope-0:15.5-16.RHEL3.src",
"3ES:cscope-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-0:15.5-16.RHEL3.i386",
"3WS:cscope-0:15.5-16.RHEL3.ia64",
"3WS:cscope-0:15.5-16.RHEL3.ppc",
"3WS:cscope-0:15.5-16.RHEL3.s390",
"3WS:cscope-0:15.5-16.RHEL3.s390x",
"3WS:cscope-0:15.5-16.RHEL3.src",
"3WS:cscope-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"4AS:cscope-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-0:15.5-10.RHEL4.3.src",
"4AS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-0:15.5-10.RHEL4.3.src",
"4Desktop:cscope-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-0:15.5-10.RHEL4.3.src",
"4ES:cscope-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-0:15.5-10.RHEL4.3.src",
"4WS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2009:1101"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 3.7,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"3AS:cscope-0:15.5-16.RHEL3.i386",
"3AS:cscope-0:15.5-16.RHEL3.ia64",
"3AS:cscope-0:15.5-16.RHEL3.ppc",
"3AS:cscope-0:15.5-16.RHEL3.s390",
"3AS:cscope-0:15.5-16.RHEL3.s390x",
"3AS:cscope-0:15.5-16.RHEL3.src",
"3AS:cscope-0:15.5-16.RHEL3.x86_64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-0:15.5-16.RHEL3.src",
"3Desktop:cscope-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-0:15.5-16.RHEL3.i386",
"3ES:cscope-0:15.5-16.RHEL3.ia64",
"3ES:cscope-0:15.5-16.RHEL3.ppc",
"3ES:cscope-0:15.5-16.RHEL3.s390",
"3ES:cscope-0:15.5-16.RHEL3.s390x",
"3ES:cscope-0:15.5-16.RHEL3.src",
"3ES:cscope-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-0:15.5-16.RHEL3.i386",
"3WS:cscope-0:15.5-16.RHEL3.ia64",
"3WS:cscope-0:15.5-16.RHEL3.ppc",
"3WS:cscope-0:15.5-16.RHEL3.s390",
"3WS:cscope-0:15.5-16.RHEL3.s390x",
"3WS:cscope-0:15.5-16.RHEL3.src",
"3WS:cscope-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"4AS:cscope-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-0:15.5-10.RHEL4.3.src",
"4AS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-0:15.5-10.RHEL4.3.src",
"4Desktop:cscope-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-0:15.5-10.RHEL4.3.src",
"4ES:cscope-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-0:15.5-10.RHEL4.3.src",
"4WS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cscope: multiple buffer overflows"
},
{
"cve": "CVE-2009-0148",
"discovery_date": "2009-03-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "490667"
}
],
"notes": [
{
"category": "description",
"text": "Multiple buffer overflows in Cscope before 15.7a allow remote attackers to execute arbitrary code via long strings in input such as (1) source-code tokens and (2) pathnames, related to integer overflows in some cases. NOTE: this issue exists because of an incomplete fix for CVE-2004-2541.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cscope: multiple buffer overflows",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"3AS:cscope-0:15.5-16.RHEL3.i386",
"3AS:cscope-0:15.5-16.RHEL3.ia64",
"3AS:cscope-0:15.5-16.RHEL3.ppc",
"3AS:cscope-0:15.5-16.RHEL3.s390",
"3AS:cscope-0:15.5-16.RHEL3.s390x",
"3AS:cscope-0:15.5-16.RHEL3.src",
"3AS:cscope-0:15.5-16.RHEL3.x86_64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-0:15.5-16.RHEL3.src",
"3Desktop:cscope-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-0:15.5-16.RHEL3.i386",
"3ES:cscope-0:15.5-16.RHEL3.ia64",
"3ES:cscope-0:15.5-16.RHEL3.ppc",
"3ES:cscope-0:15.5-16.RHEL3.s390",
"3ES:cscope-0:15.5-16.RHEL3.s390x",
"3ES:cscope-0:15.5-16.RHEL3.src",
"3ES:cscope-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-0:15.5-16.RHEL3.i386",
"3WS:cscope-0:15.5-16.RHEL3.ia64",
"3WS:cscope-0:15.5-16.RHEL3.ppc",
"3WS:cscope-0:15.5-16.RHEL3.s390",
"3WS:cscope-0:15.5-16.RHEL3.s390x",
"3WS:cscope-0:15.5-16.RHEL3.src",
"3WS:cscope-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"4AS:cscope-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-0:15.5-10.RHEL4.3.src",
"4AS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-0:15.5-10.RHEL4.3.src",
"4Desktop:cscope-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-0:15.5-10.RHEL4.3.src",
"4ES:cscope-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-0:15.5-10.RHEL4.3.src",
"4WS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2009-0148"
},
{
"category": "external",
"summary": "RHBZ#490667",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=490667"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2009-0148",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0148"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0148",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0148"
}
],
"release_date": "2009-04-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2009-06-15T21:04:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
"product_ids": [
"3AS:cscope-0:15.5-16.RHEL3.i386",
"3AS:cscope-0:15.5-16.RHEL3.ia64",
"3AS:cscope-0:15.5-16.RHEL3.ppc",
"3AS:cscope-0:15.5-16.RHEL3.s390",
"3AS:cscope-0:15.5-16.RHEL3.s390x",
"3AS:cscope-0:15.5-16.RHEL3.src",
"3AS:cscope-0:15.5-16.RHEL3.x86_64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-0:15.5-16.RHEL3.src",
"3Desktop:cscope-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-0:15.5-16.RHEL3.i386",
"3ES:cscope-0:15.5-16.RHEL3.ia64",
"3ES:cscope-0:15.5-16.RHEL3.ppc",
"3ES:cscope-0:15.5-16.RHEL3.s390",
"3ES:cscope-0:15.5-16.RHEL3.s390x",
"3ES:cscope-0:15.5-16.RHEL3.src",
"3ES:cscope-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-0:15.5-16.RHEL3.i386",
"3WS:cscope-0:15.5-16.RHEL3.ia64",
"3WS:cscope-0:15.5-16.RHEL3.ppc",
"3WS:cscope-0:15.5-16.RHEL3.s390",
"3WS:cscope-0:15.5-16.RHEL3.s390x",
"3WS:cscope-0:15.5-16.RHEL3.src",
"3WS:cscope-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"4AS:cscope-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-0:15.5-10.RHEL4.3.src",
"4AS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-0:15.5-10.RHEL4.3.src",
"4Desktop:cscope-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-0:15.5-10.RHEL4.3.src",
"4ES:cscope-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-0:15.5-10.RHEL4.3.src",
"4WS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2009:1101"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"3AS:cscope-0:15.5-16.RHEL3.i386",
"3AS:cscope-0:15.5-16.RHEL3.ia64",
"3AS:cscope-0:15.5-16.RHEL3.ppc",
"3AS:cscope-0:15.5-16.RHEL3.s390",
"3AS:cscope-0:15.5-16.RHEL3.s390x",
"3AS:cscope-0:15.5-16.RHEL3.src",
"3AS:cscope-0:15.5-16.RHEL3.x86_64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-0:15.5-16.RHEL3.src",
"3Desktop:cscope-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-0:15.5-16.RHEL3.i386",
"3ES:cscope-0:15.5-16.RHEL3.ia64",
"3ES:cscope-0:15.5-16.RHEL3.ppc",
"3ES:cscope-0:15.5-16.RHEL3.s390",
"3ES:cscope-0:15.5-16.RHEL3.s390x",
"3ES:cscope-0:15.5-16.RHEL3.src",
"3ES:cscope-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-0:15.5-16.RHEL3.i386",
"3WS:cscope-0:15.5-16.RHEL3.ia64",
"3WS:cscope-0:15.5-16.RHEL3.ppc",
"3WS:cscope-0:15.5-16.RHEL3.s390",
"3WS:cscope-0:15.5-16.RHEL3.s390x",
"3WS:cscope-0:15.5-16.RHEL3.src",
"3WS:cscope-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"4AS:cscope-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-0:15.5-10.RHEL4.3.src",
"4AS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-0:15.5-10.RHEL4.3.src",
"4Desktop:cscope-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-0:15.5-10.RHEL4.3.src",
"4ES:cscope-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-0:15.5-10.RHEL4.3.src",
"4WS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "cscope: multiple buffer overflows"
},
{
"cve": "CVE-2009-1577",
"discovery_date": "2006-04-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "499174"
}
],
"notes": [
{
"category": "description",
"text": "Multiple stack-based buffer overflows in the putstring function in find.c in Cscope before 15.6 allow user-assisted remote attackers to execute arbitrary code via a long (1) function name or (2) symbol in a source-code file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cscope: putstring buffer overflow",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"3AS:cscope-0:15.5-16.RHEL3.i386",
"3AS:cscope-0:15.5-16.RHEL3.ia64",
"3AS:cscope-0:15.5-16.RHEL3.ppc",
"3AS:cscope-0:15.5-16.RHEL3.s390",
"3AS:cscope-0:15.5-16.RHEL3.s390x",
"3AS:cscope-0:15.5-16.RHEL3.src",
"3AS:cscope-0:15.5-16.RHEL3.x86_64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-0:15.5-16.RHEL3.src",
"3Desktop:cscope-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-0:15.5-16.RHEL3.i386",
"3ES:cscope-0:15.5-16.RHEL3.ia64",
"3ES:cscope-0:15.5-16.RHEL3.ppc",
"3ES:cscope-0:15.5-16.RHEL3.s390",
"3ES:cscope-0:15.5-16.RHEL3.s390x",
"3ES:cscope-0:15.5-16.RHEL3.src",
"3ES:cscope-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-0:15.5-16.RHEL3.i386",
"3WS:cscope-0:15.5-16.RHEL3.ia64",
"3WS:cscope-0:15.5-16.RHEL3.ppc",
"3WS:cscope-0:15.5-16.RHEL3.s390",
"3WS:cscope-0:15.5-16.RHEL3.s390x",
"3WS:cscope-0:15.5-16.RHEL3.src",
"3WS:cscope-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"4AS:cscope-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-0:15.5-10.RHEL4.3.src",
"4AS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-0:15.5-10.RHEL4.3.src",
"4Desktop:cscope-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-0:15.5-10.RHEL4.3.src",
"4ES:cscope-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-0:15.5-10.RHEL4.3.src",
"4WS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2009-1577"
},
{
"category": "external",
"summary": "RHBZ#499174",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=499174"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2009-1577",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-1577"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1577",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1577"
}
],
"release_date": "2006-04-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2009-06-15T21:04:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
"product_ids": [
"3AS:cscope-0:15.5-16.RHEL3.i386",
"3AS:cscope-0:15.5-16.RHEL3.ia64",
"3AS:cscope-0:15.5-16.RHEL3.ppc",
"3AS:cscope-0:15.5-16.RHEL3.s390",
"3AS:cscope-0:15.5-16.RHEL3.s390x",
"3AS:cscope-0:15.5-16.RHEL3.src",
"3AS:cscope-0:15.5-16.RHEL3.x86_64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-0:15.5-16.RHEL3.src",
"3Desktop:cscope-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-0:15.5-16.RHEL3.i386",
"3ES:cscope-0:15.5-16.RHEL3.ia64",
"3ES:cscope-0:15.5-16.RHEL3.ppc",
"3ES:cscope-0:15.5-16.RHEL3.s390",
"3ES:cscope-0:15.5-16.RHEL3.s390x",
"3ES:cscope-0:15.5-16.RHEL3.src",
"3ES:cscope-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-0:15.5-16.RHEL3.i386",
"3WS:cscope-0:15.5-16.RHEL3.ia64",
"3WS:cscope-0:15.5-16.RHEL3.ppc",
"3WS:cscope-0:15.5-16.RHEL3.s390",
"3WS:cscope-0:15.5-16.RHEL3.s390x",
"3WS:cscope-0:15.5-16.RHEL3.src",
"3WS:cscope-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"4AS:cscope-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-0:15.5-10.RHEL4.3.src",
"4AS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-0:15.5-10.RHEL4.3.src",
"4Desktop:cscope-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-0:15.5-10.RHEL4.3.src",
"4ES:cscope-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-0:15.5-10.RHEL4.3.src",
"4WS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2009:1101"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"3AS:cscope-0:15.5-16.RHEL3.i386",
"3AS:cscope-0:15.5-16.RHEL3.ia64",
"3AS:cscope-0:15.5-16.RHEL3.ppc",
"3AS:cscope-0:15.5-16.RHEL3.s390",
"3AS:cscope-0:15.5-16.RHEL3.s390x",
"3AS:cscope-0:15.5-16.RHEL3.src",
"3AS:cscope-0:15.5-16.RHEL3.x86_64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3AS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-0:15.5-16.RHEL3.src",
"3Desktop:cscope-0:15.5-16.RHEL3.x86_64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3Desktop:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-0:15.5-16.RHEL3.i386",
"3ES:cscope-0:15.5-16.RHEL3.ia64",
"3ES:cscope-0:15.5-16.RHEL3.ppc",
"3ES:cscope-0:15.5-16.RHEL3.s390",
"3ES:cscope-0:15.5-16.RHEL3.s390x",
"3ES:cscope-0:15.5-16.RHEL3.src",
"3ES:cscope-0:15.5-16.RHEL3.x86_64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3ES:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-0:15.5-16.RHEL3.i386",
"3WS:cscope-0:15.5-16.RHEL3.ia64",
"3WS:cscope-0:15.5-16.RHEL3.ppc",
"3WS:cscope-0:15.5-16.RHEL3.s390",
"3WS:cscope-0:15.5-16.RHEL3.s390x",
"3WS:cscope-0:15.5-16.RHEL3.src",
"3WS:cscope-0:15.5-16.RHEL3.x86_64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.i386",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ia64",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.ppc",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.s390x",
"3WS:cscope-debuginfo-0:15.5-16.RHEL3.x86_64",
"4AS:cscope-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-0:15.5-10.RHEL4.3.src",
"4AS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4AS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-0:15.5-10.RHEL4.3.src",
"4Desktop:cscope-0:15.5-10.RHEL4.3.x86_64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4Desktop:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-0:15.5-10.RHEL4.3.src",
"4ES:cscope-0:15.5-10.RHEL4.3.x86_64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4ES:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-0:15.5-10.RHEL4.3.src",
"4WS:cscope-0:15.5-10.RHEL4.3.x86_64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.i386",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ia64",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.ppc",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.s390x",
"4WS:cscope-debuginfo-0:15.5-10.RHEL4.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "cscope: putstring buffer overflow"
}
]
}
rhsa-2009:1102
Vulnerability from csaf_redhat
Published
2009-06-15 21:10
Modified
2024-11-22 02:45
Summary
Red Hat Security Advisory: cscope security update
Notes
Topic
An updated cscope package that fixes multiple security issues is now
available for Red Hat Enterprise Linux 5.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Details
cscope is a mature, ncurses-based, C source-code tree browsing tool.
Multiple buffer overflow flaws were found in cscope. An attacker could
create a specially crafted source code file that could cause cscope to
crash or, possibly, execute arbitrary code when browsed with cscope.
(CVE-2004-2541, CVE-2009-0148)
All users of cscope are advised to upgrade to this updated package, which
contains backported patches to fix these issues. All running instances of
cscope must be restarted for this update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An updated cscope package that fixes multiple security issues is now\navailable for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.",
"title": "Topic"
},
{
"category": "general",
"text": "cscope is a mature, ncurses-based, C source-code tree browsing tool.\n\nMultiple buffer overflow flaws were found in cscope. An attacker could\ncreate a specially crafted source code file that could cause cscope to\ncrash or, possibly, execute arbitrary code when browsed with cscope.\n(CVE-2004-2541, CVE-2009-0148)\n\nAll users of cscope are advised to upgrade to this updated package, which\ncontains backported patches to fix these issues. All running instances of\ncscope must be restarted for this update to take effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2009:1102",
"url": "https://access.redhat.com/errata/RHSA-2009:1102"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "490667",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=490667"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1102.json"
}
],
"title": "Red Hat Security Advisory: cscope security update",
"tracking": {
"current_release_date": "2024-11-22T02:45:10+00:00",
"generator": {
"date": "2024-11-22T02:45:10+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2009:1102",
"initial_release_date": "2009-06-15T21:10:00+00:00",
"revision_history": [
{
"date": "2009-06-15T21:10:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2009-06-15T17:10:56+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T02:45:10+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::client_workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux (v. 5 server)",
"product": {
"name": "Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64",
"product": {
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64",
"product_id": "cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-15.1.el5_3.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-15.1.el5_3.1.x86_64",
"product": {
"name": "cscope-0:15.5-15.1.el5_3.1.x86_64",
"product_id": "cscope-0:15.5-15.1.el5_3.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-15.1.el5_3.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"product": {
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"product_id": "cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-15.1.el5_3.1?arch=i386"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-15.1.el5_3.1.i386",
"product": {
"name": "cscope-0:15.5-15.1.el5_3.1.i386",
"product_id": "cscope-0:15.5-15.1.el5_3.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-15.1.el5_3.1?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-0:15.5-15.1.el5_3.1.src",
"product": {
"name": "cscope-0:15.5-15.1.el5_3.1.src",
"product_id": "cscope-0:15.5-15.1.el5_3.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-15.1.el5_3.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"product": {
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"product_id": "cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-15.1.el5_3.1?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-15.1.el5_3.1.ia64",
"product": {
"name": "cscope-0:15.5-15.1.el5_3.1.ia64",
"product_id": "cscope-0:15.5-15.1.el5_3.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-15.1.el5_3.1?arch=ia64"
}
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"product": {
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"product_id": "cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-15.1.el5_3.1?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-15.1.el5_3.1.ppc",
"product": {
"name": "cscope-0:15.5-15.1.el5_3.1.ppc",
"product_id": "cscope-0:15.5-15.1.el5_3.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-15.1.el5_3.1?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"product": {
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"product_id": "cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope-debuginfo@15.5-15.1.el5_3.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "cscope-0:15.5-15.1.el5_3.1.s390x",
"product": {
"name": "cscope-0:15.5-15.1.el5_3.1.s390x",
"product_id": "cscope-0:15.5-15.1.el5_3.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cscope@15.5-15.1.el5_3.1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-15.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.i386"
},
"product_reference": "cscope-0:15.5-15.1.el5_3.1.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-15.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.ia64"
},
"product_reference": "cscope-0:15.5-15.1.el5_3.1.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-15.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.ppc"
},
"product_reference": "cscope-0:15.5-15.1.el5_3.1.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-15.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.s390x"
},
"product_reference": "cscope-0:15.5-15.1.el5_3.1.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-15.1.el5_3.1.src as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.src"
},
"product_reference": "cscope-0:15.5-15.1.el5_3.1.src",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-15.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.x86_64"
},
"product_reference": "cscope-0:15.5-15.1.el5_3.1.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.i386"
},
"product_reference": "cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64"
},
"product_reference": "cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc"
},
"product_reference": "cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x"
},
"product_reference": "cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64"
},
"product_reference": "cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-15.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:cscope-0:15.5-15.1.el5_3.1.i386"
},
"product_reference": "cscope-0:15.5-15.1.el5_3.1.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-15.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:cscope-0:15.5-15.1.el5_3.1.ia64"
},
"product_reference": "cscope-0:15.5-15.1.el5_3.1.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-15.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:cscope-0:15.5-15.1.el5_3.1.ppc"
},
"product_reference": "cscope-0:15.5-15.1.el5_3.1.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-15.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:cscope-0:15.5-15.1.el5_3.1.s390x"
},
"product_reference": "cscope-0:15.5-15.1.el5_3.1.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-15.1.el5_3.1.src as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:cscope-0:15.5-15.1.el5_3.1.src"
},
"product_reference": "cscope-0:15.5-15.1.el5_3.1.src",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-0:15.5-15.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:cscope-0:15.5-15.1.el5_3.1.x86_64"
},
"product_reference": "cscope-0:15.5-15.1.el5_3.1.x86_64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.i386"
},
"product_reference": "cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64"
},
"product_reference": "cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc"
},
"product_reference": "cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x"
},
"product_reference": "cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64"
},
"product_reference": "cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64",
"relates_to_product_reference": "5Server"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2004-2541",
"discovery_date": "2009-03-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "490667"
}
],
"notes": [
{
"category": "description",
"text": "Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cscope: multiple buffer overflows",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.i386",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.ia64",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.ppc",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.s390x",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.src",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.x86_64",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64",
"5Server:cscope-0:15.5-15.1.el5_3.1.i386",
"5Server:cscope-0:15.5-15.1.el5_3.1.ia64",
"5Server:cscope-0:15.5-15.1.el5_3.1.ppc",
"5Server:cscope-0:15.5-15.1.el5_3.1.s390x",
"5Server:cscope-0:15.5-15.1.el5_3.1.src",
"5Server:cscope-0:15.5-15.1.el5_3.1.x86_64",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2004-2541"
},
{
"category": "external",
"summary": "RHBZ#490667",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=490667"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2004-2541",
"url": "https://www.cve.org/CVERecord?id=CVE-2004-2541"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-2541",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2004-2541"
}
],
"release_date": "2009-04-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2009-06-15T21:10:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
"product_ids": [
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.i386",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.ia64",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.ppc",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.s390x",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.src",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.x86_64",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64",
"5Server:cscope-0:15.5-15.1.el5_3.1.i386",
"5Server:cscope-0:15.5-15.1.el5_3.1.ia64",
"5Server:cscope-0:15.5-15.1.el5_3.1.ppc",
"5Server:cscope-0:15.5-15.1.el5_3.1.s390x",
"5Server:cscope-0:15.5-15.1.el5_3.1.src",
"5Server:cscope-0:15.5-15.1.el5_3.1.x86_64",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2009:1102"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.i386",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.ia64",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.ppc",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.s390x",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.src",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.x86_64",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64",
"5Server:cscope-0:15.5-15.1.el5_3.1.i386",
"5Server:cscope-0:15.5-15.1.el5_3.1.ia64",
"5Server:cscope-0:15.5-15.1.el5_3.1.ppc",
"5Server:cscope-0:15.5-15.1.el5_3.1.s390x",
"5Server:cscope-0:15.5-15.1.el5_3.1.src",
"5Server:cscope-0:15.5-15.1.el5_3.1.x86_64",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "cscope: multiple buffer overflows"
},
{
"cve": "CVE-2009-0148",
"discovery_date": "2009-03-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "490667"
}
],
"notes": [
{
"category": "description",
"text": "Multiple buffer overflows in Cscope before 15.7a allow remote attackers to execute arbitrary code via long strings in input such as (1) source-code tokens and (2) pathnames, related to integer overflows in some cases. NOTE: this issue exists because of an incomplete fix for CVE-2004-2541.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cscope: multiple buffer overflows",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.i386",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.ia64",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.ppc",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.s390x",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.src",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.x86_64",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64",
"5Server:cscope-0:15.5-15.1.el5_3.1.i386",
"5Server:cscope-0:15.5-15.1.el5_3.1.ia64",
"5Server:cscope-0:15.5-15.1.el5_3.1.ppc",
"5Server:cscope-0:15.5-15.1.el5_3.1.s390x",
"5Server:cscope-0:15.5-15.1.el5_3.1.src",
"5Server:cscope-0:15.5-15.1.el5_3.1.x86_64",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2009-0148"
},
{
"category": "external",
"summary": "RHBZ#490667",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=490667"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2009-0148",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-0148"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0148",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0148"
}
],
"release_date": "2009-04-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2009-06-15T21:10:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
"product_ids": [
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.i386",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.ia64",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.ppc",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.s390x",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.src",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.x86_64",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64",
"5Server:cscope-0:15.5-15.1.el5_3.1.i386",
"5Server:cscope-0:15.5-15.1.el5_3.1.ia64",
"5Server:cscope-0:15.5-15.1.el5_3.1.ppc",
"5Server:cscope-0:15.5-15.1.el5_3.1.s390x",
"5Server:cscope-0:15.5-15.1.el5_3.1.src",
"5Server:cscope-0:15.5-15.1.el5_3.1.x86_64",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2009:1102"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.i386",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.ia64",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.ppc",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.s390x",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.src",
"5Client-Workstation:cscope-0:15.5-15.1.el5_3.1.x86_64",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"5Client-Workstation:cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64",
"5Server:cscope-0:15.5-15.1.el5_3.1.i386",
"5Server:cscope-0:15.5-15.1.el5_3.1.ia64",
"5Server:cscope-0:15.5-15.1.el5_3.1.ppc",
"5Server:cscope-0:15.5-15.1.el5_3.1.s390x",
"5Server:cscope-0:15.5-15.1.el5_3.1.src",
"5Server:cscope-0:15.5-15.1.el5_3.1.x86_64",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.i386",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.ia64",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.ppc",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.s390x",
"5Server:cscope-debuginfo-0:15.5-15.1.el5_3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "cscope: multiple buffer overflows"
}
]
}
fkie_cve-2004-2541
Vulnerability from fkie_nvd
Published
2004-12-31 05:00
Modified
2025-04-03 01:03
Severity ?
Summary
Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | http://docs.info.apple.com/article.html?artnum=306172 | ||
| cve@mitre.org | http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html | ||
| cve@mitre.org | http://secunia.com/advisories/13237 | Vendor Advisory | |
| cve@mitre.org | http://secunia.com/advisories/20191 | ||
| cve@mitre.org | http://secunia.com/advisories/20564 | ||
| cve@mitre.org | http://secunia.com/advisories/26235 | ||
| cve@mitre.org | http://secunia.com/advisories/35462 | ||
| cve@mitre.org | http://sourceforge.net/tracker/index.php?func=detail&aid=1064875&group_id=4664&atid=104664 | ||
| cve@mitre.org | http://www.debian.org/security/2006/dsa-1064 | ||
| cve@mitre.org | http://www.gentoo.org/security/en/glsa/glsa-200606-10.xml | ||
| cve@mitre.org | http://www.osvdb.org/11920 | ||
| cve@mitre.org | http://www.redhat.com/support/errata/RHSA-2009-1101.html | ||
| cve@mitre.org | http://www.redhat.com/support/errata/RHSA-2009-1102.html | ||
| cve@mitre.org | http://www.securityfocus.com/bid/18050 | ||
| cve@mitre.org | http://www.securityfocus.com/bid/25159 | ||
| cve@mitre.org | http://www.vupen.com/english/advisories/2007/2732 | ||
| cve@mitre.org | https://bugzilla.redhat.com/show_bug.cgi?id=490667 | ||
| cve@mitre.org | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10069 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://docs.info.apple.com/article.html?artnum=306172 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/13237 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/20191 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/20564 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/26235 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/35462 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://sourceforge.net/tracker/index.php?func=detail&aid=1064875&group_id=4664&atid=104664 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.debian.org/security/2006/dsa-1064 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.gentoo.org/security/en/glsa/glsa-200606-10.xml | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.osvdb.org/11920 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.redhat.com/support/errata/RHSA-2009-1101.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.redhat.com/support/errata/RHSA-2009-1102.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/18050 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/25159 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.vupen.com/english/advisories/2007/2732 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=490667 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10069 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cscope:cscope:15.5:*:*:*:*:*:*:*",
"matchCriteriaId": "E2F1D020-6884-4D6D-AB04-88119CB53F9E",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target."
}
],
"id": "CVE-2004-2541",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2004-12-31T05:00:00.000",
"references": [
{
"source": "cve@mitre.org",
"url": "http://docs.info.apple.com/article.html?artnum=306172"
},
{
"source": "cve@mitre.org",
"url": "http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/13237"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/20191"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/20564"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/26235"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/35462"
},
{
"source": "cve@mitre.org",
"url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1064875\u0026group_id=4664\u0026atid=104664"
},
{
"source": "cve@mitre.org",
"url": "http://www.debian.org/security/2006/dsa-1064"
},
{
"source": "cve@mitre.org",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200606-10.xml"
},
{
"source": "cve@mitre.org",
"url": "http://www.osvdb.org/11920"
},
{
"source": "cve@mitre.org",
"url": "http://www.redhat.com/support/errata/RHSA-2009-1101.html"
},
{
"source": "cve@mitre.org",
"url": "http://www.redhat.com/support/errata/RHSA-2009-1102.html"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/18050"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/25159"
},
{
"source": "cve@mitre.org",
"url": "http://www.vupen.com/english/advisories/2007/2732"
},
{
"source": "cve@mitre.org",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=490667"
},
{
"source": "cve@mitre.org",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10069"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://docs.info.apple.com/article.html?artnum=306172"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/13237"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/20191"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/20564"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/26235"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/35462"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1064875\u0026group_id=4664\u0026atid=104664"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.debian.org/security/2006/dsa-1064"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200606-10.xml"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.osvdb.org/11920"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.redhat.com/support/errata/RHSA-2009-1101.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.redhat.com/support/errata/RHSA-2009-1102.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/18050"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/25159"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.vupen.com/english/advisories/2007/2732"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=490667"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10069"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
ghsa-jqff-mwp3-mx4x
Vulnerability from github
Published
2022-04-29 03:01
Modified
2022-04-29 03:01
VLAI Severity ?
Details
Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target.
{
"affected": [],
"aliases": [
"CVE-2004-2541"
],
"database_specific": {
"cwe_ids": [
"CWE-119"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2004-12-31T05:00:00Z",
"severity": "MODERATE"
},
"details": "Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target.",
"id": "GHSA-jqff-mwp3-mx4x",
"modified": "2022-04-29T03:01:38Z",
"published": "2022-04-29T03:01:38Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2004-2541"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=490667"
},
{
"type": "WEB",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10069"
},
{
"type": "WEB",
"url": "http://docs.info.apple.com/article.html?artnum=306172"
},
{
"type": "WEB",
"url": "http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/13237"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/20191"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/20564"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/26235"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/35462"
},
{
"type": "WEB",
"url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1064875\u0026group_id=4664\u0026atid=104664"
},
{
"type": "WEB",
"url": "http://www.debian.org/security/2006/dsa-1064"
},
{
"type": "WEB",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200606-10.xml"
},
{
"type": "WEB",
"url": "http://www.osvdb.org/11920"
},
{
"type": "WEB",
"url": "http://www.redhat.com/support/errata/RHSA-2009-1101.html"
},
{
"type": "WEB",
"url": "http://www.redhat.com/support/errata/RHSA-2009-1102.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/18050"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/25159"
},
{
"type": "WEB",
"url": "http://www.vupen.com/english/advisories/2007/2732"
}
],
"schema_version": "1.4.0",
"severity": []
}
gsd-2004-2541
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2004-2541",
"description": "Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target.",
"id": "GSD-2004-2541",
"references": [
"https://www.suse.com/security/cve/CVE-2004-2541.html",
"https://www.debian.org/security/2006/dsa-1064",
"https://access.redhat.com/errata/RHSA-2009:1102",
"https://access.redhat.com/errata/RHSA-2009:1101",
"https://linux.oracle.com/cve/CVE-2004-2541.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2004-2541"
],
"details": "Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target.",
"id": "GSD-2004-2541",
"modified": "2023-12-13T01:22:55.402225Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2004-2541",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "ADV-2007-2732",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2007/2732"
},
{
"name": "11920",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/11920"
},
{
"name": "35462",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/35462"
},
{
"name": "oval:org.mitre.oval:def:10069",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10069"
},
{
"name": "RHSA-2009:1101",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2009-1101.html"
},
{
"name": "APPLE-SA-2007-07-31",
"refsource": "APPLE",
"url": "http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html"
},
{
"name": "13237",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/13237"
},
{
"name": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1064875\u0026group_id=4664\u0026atid=104664",
"refsource": "MISC",
"url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1064875\u0026group_id=4664\u0026atid=104664"
},
{
"name": "DSA-1064",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2006/dsa-1064"
},
{
"name": "GLSA-200606-10",
"refsource": "GENTOO",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200606-10.xml"
},
{
"name": "20191",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/20191"
},
{
"name": "RHSA-2009:1102",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2009-1102.html"
},
{
"name": "http://docs.info.apple.com/article.html?artnum=306172",
"refsource": "CONFIRM",
"url": "http://docs.info.apple.com/article.html?artnum=306172"
},
{
"name": "20564",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/20564"
},
{
"name": "25159",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/25159"
},
{
"name": "18050",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/18050"
},
{
"name": "26235",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/26235"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=490667",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=490667"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cscope:cscope:15.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2004-2541"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Buffer overflow in Cscope 15.5, and possibly multiple overflows, allows remote attackers to execute arbitrary code via a C file with a long #include line that is later browsed by the target."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1064875\u0026group_id=4664\u0026atid=104664",
"refsource": "MISC",
"tags": [],
"url": "http://sourceforge.net/tracker/index.php?func=detail\u0026aid=1064875\u0026group_id=4664\u0026atid=104664"
},
{
"name": "11920",
"refsource": "OSVDB",
"tags": [],
"url": "http://www.osvdb.org/11920"
},
{
"name": "13237",
"refsource": "SECUNIA",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/13237"
},
{
"name": "DSA-1064",
"refsource": "DEBIAN",
"tags": [],
"url": "http://www.debian.org/security/2006/dsa-1064"
},
{
"name": "20191",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/20191"
},
{
"name": "GLSA-200606-10",
"refsource": "GENTOO",
"tags": [],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200606-10.xml"
},
{
"name": "20564",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/20564"
},
{
"name": "http://docs.info.apple.com/article.html?artnum=306172",
"refsource": "CONFIRM",
"tags": [],
"url": "http://docs.info.apple.com/article.html?artnum=306172"
},
{
"name": "APPLE-SA-2007-07-31",
"refsource": "APPLE",
"tags": [],
"url": "http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html"
},
{
"name": "18050",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/18050"
},
{
"name": "25159",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/25159"
},
{
"name": "26235",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/26235"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=490667",
"refsource": "CONFIRM",
"tags": [],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=490667"
},
{
"name": "RHSA-2009:1101",
"refsource": "REDHAT",
"tags": [],
"url": "http://www.redhat.com/support/errata/RHSA-2009-1101.html"
},
{
"name": "RHSA-2009:1102",
"refsource": "REDHAT",
"tags": [],
"url": "http://www.redhat.com/support/errata/RHSA-2009-1102.html"
},
{
"name": "35462",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/35462"
},
{
"name": "ADV-2007-2732",
"refsource": "VUPEN",
"tags": [],
"url": "http://www.vupen.com/english/advisories/2007/2732"
},
{
"name": "oval:org.mitre.oval:def:10069",
"refsource": "OVAL",
"tags": [],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10069"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
}
},
"lastModifiedDate": "2017-10-11T01:29Z",
"publishedDate": "2004-12-31T05:00Z"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…